Description

AbsoluteTelnet 11.24 contains a denial of service vulnerability that allows local attackers to crash the application by manipulating username and error report fields. Attackers can trigger the crash by inserting 1000 characters into the username or email address fields, causing the application to become unresponsive.

Related CPE's

a

celestialsoftware

absolutetelnet

11.24

Vulnerable

References

https://www.celestialsoftware.net/

Product

https://www.exploit-db.com/exploits/50510

ExploitThird Party Advisory

Weaknesses

[email protected]

Primary
CWE-787

CVSS impact metrics

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

6.2 · Medium

Information

Source identifier

[email protected]

Vulnerability status

Analyzed

Published

2026-01-15T16:16:07.830Z

1 month ago

Last modified

2026-01-21T22:28:45.453Z

4 weeks ago