A long, long time ago, in a land free of binary exploit mitigations, when Unix still roamed the Earth, there lived a pre-authentication Telnetd vulnerability.In fact, this vulnerability was born so long ago (way back in 1994) that it may even be older than you. To put the timespan in perspective: it came into existence the same year the seminal movie Hackers was released.That was so long ago that RISC was still a distant dream.Come to think of it, maybe it was even the product of Zero Cool himself?Anyway. Recently, this vulnerability was brutally put to rest.What Are We Looking At Here?If you're not familiar with Telnet, that's okay.Telnet is a network protocol that provides a command-line interface for communicating with a remote server over TCP/IP. In other words, remote code execution as a service. Typical setups do have an authentication barrier, requiring you to log in before you can access the system's shell. It also operates over plaintext, which means yes, it transmits your username and password across the network in the clear.The de facto replacement these days is SSH, and Telnet is becoming increasingly uncommon.What Is CVE-2026-32746?CVE-2026-32746, discovered by the DREAM Security Research Team, is a BSS-based buffer overflow that allows an attacker to corrupt roughly 400 bytes of adjacent variables.It resides in the LINEMODE SLC (Set Linemode Characters) negotiation handler. While strictly speaking it affects 'just' GNU inetutils, most vendors have based their Telnetd implementations on the same code, making the blast radius vast and somewhat difficult to estimate. It definitely includes all the major Linux distributions (we checked).With a vulnerability like this, we expected the Internet to explode with excitement - yet it’s been almost a week now with no good analysis. We thought we might as well publish where we got to.We’ll go through a few things - how we isolated the vulnerability, what it enables attackers to do (and under what circumstances), a...
First seen: 2026-03-25 10:46
Last seen: 2026-03-26 01:57