Lucene search

MitreCVE-2005-0868

HistoryMay 02, 2005 - 4:00 a.m.

CVE-2005-0868

2005-05-0204:00:00

mitre

web.nvd.nist.gov

135

cve-2005-0868

as/400

telnet

terminal emulation

ibm client access

bosanova

powerterm

mochasoft

strpco

strpccmd

rexec

nvd

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

7.5

Confidence

High

EPSS

0.002

Percentile

56.0%

JSON

AS/400 Telnet 5250 terminal emulation clients, as implemented by (1) IBM client access, (2) Bosanova, (3) PowerTerm, (4) Mochasoft, and possibly other emulations, allows malicious AS/400 servers to execute arbitrary commands via a STRPCO (Start PC Organizer) command followed by STRPCCMD (Start PC command), as demonstrated by creating a backdoor account using REXEC.

Affected configurations

Nvd

Node

bosanovalauncher400

ibmclient_access

mochasofttn5250

powerterminterconnect

VendorProductVersionCPE
bosanovalauncher400*cpe:2.3:a:bosanova:launcher400:*:*:*:*:*:*:*:*
ibmclient_access*cpe:2.3:a:ibm:client_access:*:*:*:*:*:*:*:*
mochasofttn5250*cpe:2.3:a:mochasoft:tn5250:*:*:*:*:*:*:*:*
powerterminterconnect*cpe:2.3:a:powerterm:interconnect:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
bosanova	launcher400	*	cpe:2.3:a:bosanova:launcher400::::::::
ibm	client_access	*	cpe:2.3:a:ibm:client_access::::::::
mochasoft	tn5250	*	cpe:2.3:a:mochasoft:tn5250::::::::
powerterm	interconnect	*	cpe:2.3:a:powerterm:interconnect::::::::

References

marc.info/?l=bugtraq&m=111160242803070&w=2

www.venera.com/downloads/Attack_5250_terminal_emulations_from_iSeries_server.pdf

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

7.5

Confidence

High

EPSS

0.002

Percentile

56.0%

JSON

Related for CVE-2005-0868