CVE-2020-36995

HIGH

Mocha Telnet Lite for iOS 4.2 - DoS

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2020-36995. PoCs published by Luis Martínez.

AI-analyzed exploit summary This PoC exploits a local DoS vulnerability in Mocha Telnet Lite for iOS by overflowing the 'User' field with a buffer of 350 'A' characters, causing the application to crash upon connection.

Description

Mocha Telnet Lite for iOS 4.2 contains a denial of service vulnerability that allows attackers to crash the application by manipulating the user configuration input. Attackers can overwrite the 'User' field with 350 bytes of repeated characters to trigger an application crash and prevent normal functionality.

Exploits (1)

exploitdb WORKING POC
by Luis Martínez · pythondoswindows
https://www.exploit-db.com/exploits/48728

This PoC exploits a local DoS vulnerability in Mocha Telnet Lite for iOS by overflowing the 'User' field with a buffer of 350 'A' characters, causing the application to crash upon connection.

Classification
Working Poc 90%
Attack Type
Dos
Complexity
Trivial
Reliability
Reliable
Target: Mocha Telnet Lite for iOS 4.2
No auth needed
Prerequisites: Mocha Telnet Lite for iOS installed · ability to paste clipboard content into the 'User' field
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3
Core References
Exploit, Third Party Advisory exploit
https://www.exploit-db.com/exploits/48728

Scores

CVSS v3 7.5
EPSS 0.0037
EPSS Percentile 28.3%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

CISA SSVC

Vulnrichment
Exploitation poc
Automatable yes
Technical Impact partial

Details

CWE
CWE-120
Status published
Products (1)
telnet-lite/Mocha Telnet Lite for iOS 4.2
Published Jan 29, 2026
Tracked Since Feb 18, 2026