CVE-2020-10188: telnet-server: no bounds checks in nextitem() function allows to remotely execute arbitrary code

Severity: Critical

CVSS Score: 9.8

utility.c in telnetd in netkit telnet through 0.17 allows remote attackers to execute arbitrary code via short writes or urgent data, because of a buffer overflow involving the netclear and nextitem functions.