Re: [PLUG] Ancient telnet bug happily hands out root to attackers

Jim Barrett via plug on 22 Jan 2026 06:58:02 -0800

[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]

Re: [PLUG] Ancient telnet bug happily hands out root to attackers

From: Jim Barrett via plug <plug@lists.phillylinux.org>
To: jeffv <jeffv@op.net>
Subject: Re: [PLUG] Ancient telnet bug happily hands out root to attackers
Date: Thu, 22 Jan 2026 09:57:45 -0500
Arc-authentication-results: i=1; mx.google.com; arc=none
Arc-message-signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20240605; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:dkim-signature; bh=4g6iBsTEHXfE/J+IZzD6K/HplUsofO6sytM4Mrkfjfg=; fh=P5B7Wp2G75NIf0iz6001HhHTg9BHOTWdjo7L5h1VWMM=; b=Vd14I09RTcWG42fOLQH+9NGcpo6svB8QT71u4DRLD1xn0KdVlhLBAEhZhZ6W6VFfro c1YFD1+FsrfpZbLr/M0j2DX78wsXZjmu7Tp2wmdY4XcUebpY4L6ybdE4SO0XQlF+Q5j0 i//n0HMBRuZWvfgAAKD94zIzuY4bBxi2lThRtLwLRIIStLr2hKmBIb0c3GKGwYpVoihq uPGe5G20Lp5MdsygwY1z2q/3Kee2JF3DqQCe85p5UoH2JSsWm43Qm1lBhPvQRpgOUbjG 5QwYB8zK2aDL+ROqTtY03p4SHQlcBiHK6w47hS5zzLVvLEuBtlnorWsva+Zk5LNWJ3gz t+KA==; darn=lists.phillylinux.org
Arc-seal: i=1; a=rsa-sha256; t=1769093877; cv=none; d=google.com; s=arc-20240605; b=c39YP4S2k0K4m91LxwAXKgM+u7KppZatVfasYOshBgTU/ZcdRkglXTqIRdP+7I84GO WXpSIZTpq69/lNE5hY/nHvNstm79z8ffV2D5+ECGKOfytdO6CHZO1OYP+Q6BESI/Htal 5NWvCYWzhQDjUEEqYSPnE0Mhn4wEjMXl8LF7jiVyJvm1ueO0atgWSK1hJkycyFYfQIqr +Mxex52U2eDY+p0em35aB7V2juIGy7D0UQFADudF0NTMgdFZug2I9WhcKk6+hsrUlATf Bon/It76rSUvAEe7VBB5EWgnB++4HBKw2SoQuGh0IiRvU/icuN74sx/6I42E/Omb1ZQ1 1lfw==
Cc: Philadelphia Linux User's Group Discussion List <plug@lists.phillylinux.org>
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=jadoba-net.20230601.gappssmtp.com; s=20230601; t=1769093877; x=1769698677; darn=lists.phillylinux.org; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:from:to:cc:subject:date:message-id:reply-to; bh=4g6iBsTEHXfE/J+IZzD6K/HplUsofO6sytM4Mrkfjfg=; b=Kna0OfxlOiKsxEweWOhTL0Cbj04LSiWTbUnTpYiNHLlJZxfdjqT9fR6Un9Q8d5tfi/ tfldY7sEoEooY8Bh7HeOxWYQV+Mpba1yBEBSycw046lBeXpMcWaW9i7JJndoIn3yPqhE IPBgrgeqhQjTqMHzZWHcusQGZ7k1nXLjPuLhJYaygKzyeNhECYzt4XykzGvCZ9Iuzr8v gbJtwCn1xr1OIFu4hAHEm15tjCXqpaRVEgN7Js23HlmL82k95OD5QkjricsgjNPW/Zzm ZSbYQhV9VF6onSYMrgE/nC7cQ0+diSrRsNrpYTeQ5PSazs9TCiAPOWBLtBD1IrUYwgLU VSMQ==
Reply-to: Jim Barrett <jadoba@jadoba.net>
Sender: "plug" <plug-bounces@lists.phillylinux.org>

It's a really bad day to be an old embedded device with no upgrade path. IOT be damned

--
Jim Barrett
Galloway, NJ

On Thu, Jan 22, 2026 at 9:22 AM jeffv via plug <plug@lists.phillylinux.org> wrote:

https://www.theregister.com/2026/01/22/root_telnet_bug/

A recently disclosed critical vulnerability in the GNU InetUtils telnet
daemon (telnetd) is "trivial" to exploit, experts say.

The bug, which had gone unnoticed for nearly 11 years, was disclosed on
January 20 and is tracked as CVE-2026-24061 (9.8).
___________________________________________________________________________
Philadelphia Linux Users Group -- http://www.phillylinux.org
Announcements - http://lists.phillylinux.org/mailman/listinfo/plug-announce
General Discussion -- http://lists.phillylinux.org/mailman/listinfo/plug

___________________________________________________________________________
Philadelphia Linux Users Group         --        http://www.phillylinux.org
Announcements - http://lists.phillylinux.org/mailman/listinfo/plug-announce
General Discussion  --   http://lists.phillylinux.org/mailman/listinfo/plug

References:
- [PLUG] Ancient telnet bug happily hands out root to attackers
  - From: jeffv via plug <plug@lists.phillylinux.org>

Prev by Date: [PLUG] Ancient telnet bug happily hands out root to attackers
Next by Date: Re: [PLUG] Ancient telnet bug happily hands out root to attackers
Previous by thread: [PLUG] Ancient telnet bug happily hands out root to attackers
Next by thread: Re: [PLUG] Ancient telnet bug happily hands out root to attackers
Index(es):
- Date
- Thread