CVE-2001-0150

Name of the Vulnerable Software and Affected Versions: Internet Explorer versions 5.5 and earlier

Description: The issue allows remote attackers to execute arbitrary commands if the Internet Explorer client is using the Telnet client provided in Services for Unix (SFU) 2.0. This is because Internet Explorer executes Telnet sessions using command line arguments specified by the web site, and SFU 2.0 creates session transcripts.

Recommendations: For Internet Explorer versions 5.5 and earlier, consider disabling the use of the Telnet client provided in Services for Unix (SFU) 2.0 as a temporary workaround until a patch is available. Restrict access to Telnet sessions to minimize the risk of exploitation.