<date>
07/2000

<title>
telnetd

<os>
IRIX 6.2 6.3 6.4 6.5 6.5.8

<info>
There exists a vulnerability in the telnetd service and its code portion 
incorrectly handling user supplied data as format strings in the sprintf() and
syslog() functions. If successfully exploited, arbitrary commands can be executed on a vulnerable system with the root user privileges. 

<link>
IRIX/irx_telnetd.c
IRIX/irx_telnetd.fix

<file>
*IRIX/irx_telnetd.c
*IRIX/irx_telnetd.fix

