CVE-2026-24061

This exploit leverages a vulnerability in GNU InetUtils telnetd (versions 2.0 through 2.6) to bypass authentication by injecting a crafted USER environment variable during Telnet NEW-ENVIRON subnegotiation, resulting in a root shell without password verification.

This PoC exploits CVE-2026-24061 by sending a malformed USER environment variable via Telnet's NEW-ENVIRON option to achieve remote code execution. It handles Telnet protocol negotiation and subnegotiation to inject the payload.

This PoC exploits CVE-2026-24061, an authentication bypass in GNU inetutils-telnetd via the NEW_ENVIRON telnet option. It sends a crafted USER environment variable to gain a root shell without credentials.

This repository contains a Python-based batch scanner and exploit tool for CVE-2026-24061, a Telnet authentication bypass vulnerability. It automates connectivity checks and payload delivery to gain root access via Telnet.

This repository contains a GUI tool for detecting and exploiting CVE-2026-24061, an authentication bypass vulnerability in GNU Inetutils telnetd that allows root access without credentials. The tool includes scanning and exploitation capabilities with a modern UI.

The repository contains a Python-based scanner for detecting CVE-2026-24061, an authentication bypass vulnerability in GNU InetUtils Telnetd. The scanner supports multi-threaded scanning, flexible target input, and detailed logging but does not include exploit code.

This exploit leverages Telnet protocol negotiation to inject a malicious NEW_ENVIRON option, allowing arbitrary command execution via the USER variable. It demonstrates a remote code execution (RCE) vulnerability in a Telnet service.

This repository contains a Python-based scanner for CVE-2026-24061, which targets an authentication bypass vulnerability in GNU Inetutils telnetd. The scanner checks for vulnerable telnetd instances by sending crafted environment variables and analyzing responses.

This repository provides a Docker-based lab to exploit CVE-2026-24061, an authentication bypass in inetutils-telnetd versions 1.9.3 to 2.7. The exploit leverages a command injection via the USER environment variable to bypass authentication and gain root access.

This repository contains a functional exploit for CVE-2026-24061, a critical authentication bypass vulnerability in GNU inetutils-telnetd. The exploit leverages improper validation of the USER environment variable in the NEW_ENVIRON telnet option to gain root shell access without authentication.

This repository contains a working Go-based PoC for CVE-2026-24061, an authentication bypass vulnerability in GNU Inetutils telnetd. The exploit leverages the NEW-ENVIRON telnet option to inject a malicious USER variable, bypassing authentication and granting root shell access.

This PoC exploits an authentication bypass in GNU Inetutils telnetd by injecting the USER environment variable with '-f root' via Telnet's NEW_ENVIRON option, granting root shell access without authentication.

This repository contains a proof-of-concept exploit and scanner for CVE-2026-24061, an authentication bypass vulnerability in inetutils-telnetd. The exploit leverages the `USER` environment variable to bypass authentication and gain a root shell.

This repository provides a Docker-based vulnerable environment for CVE-2026-24061, a Telnet authentication bypass vulnerability. The setup allows an attacker to gain a root shell by exploiting the misconfigured Telnet service.

This repository provides a functional exploit PoC for CVE-2026-24061, an authentication bypass in GNU InetUtils telnetd. It includes a Vagrant VM setup with a vulnerable environment and a clear exploit command to achieve root access via Telnet.

This repository contains a functional PoC for CVE-2026-24061, an authentication bypass vulnerability in telnetd. The exploit leverages improper handling of the USER environment variable to bypass authentication and achieve RCE as root.

This repository contains a Python-based scanner for CVE-2026-24061, an authentication bypass vulnerability in certain telnetd implementations. The script checks for vulnerable systems by attempting to exploit the NEW-ENVIRON telnet option to bypass authentication and execute commands.

The repository contains a functional exploit for CVE-2026-24061, a critical remote authentication bypass in GNU Inetutils telnetd. The exploit leverages the NEW-ENVIRON Telnet option to inject a malicious USER environment variable, bypassing authentication and granting a root shell.

This repository contains a Python-based multithreaded scanner and exploit for CVE-2026-24061, which targets a vulnerability in GNU InetUtils (telnetd). The exploit injects the `USER` environment variable with the value `-f root` during the Telnet protocol handshake to gain a root shell.

The repository claims to be a PoC for CVE-2026-24061 targeting GNU Telnetd for RCE but only contains a basic telnet connection script without any exploit logic. The script merely establishes a telnet session with provided credentials.

This repository contains a scanner for detecting vulnerable Telnetd services affected by CVE-2026-24061, an authentication bypass vulnerability in GNU InetUtils. The scanner is written in Python and supports multi-threaded scanning with various input options.

Terminus is a Python-based exploit framework for CVE-2026-24061, a Telnet authentication bypass vulnerability. It includes a scanner, protocol engine, and exploitation module for RFC 1572 NEW_ENVIRON abuse.

This repository contains a Python-based scanner to detect CVE-2026-24061, a vulnerability in telnetd servers that improperly handle environment variables via the NEW-ENVIRON telnet option. The script tests for potential command injection or authentication bypass by sending crafted environment variables and analyzing server responses.

This repository contains a functional exploit and scanner for CVE-2026-24061, which leverages improper handling of the `NEW-ENVIRON` Telnet option in `inetutils-telnetd` to achieve remote pre-authentication root access via the `-f root` payload.

This is a functional PoC exploit for CVE-2026-24061, targeting a Telnet NEW-ENVIRON authentication bypass vulnerability. It establishes a connection to a vulnerable Telnet service and injects a payload (`USER=-f root`) to bypass authentication.

This is a functional proof-of-concept exploit for CVE-2026-24061, an authentication bypass vulnerability in GNU inetutils-telnetd. It leverages the TELNET NEW-ENVIRON option to inject a malicious USER variable, bypassing authentication and granting a root shell.

This repository provides a Dockerized test environment for CVE-2026-24061, which targets a vulnerability in GNU InetUtils 2.0's telnetd service. The setup includes a vulnerable telnetd service configured via xinetd, allowing researchers to test exploitation scenarios in an isolated environment.

The repository provides a detailed technical analysis of CVE-2026-24061, an authentication bypass vulnerability in GNU InetUtils telnetd. It explains how the USER environment variable is mishandled, allowing command injection to bypass authentication and gain root access.

This repository contains a functional exploit for CVE-2026-24061, targeting a remote authentication bypass vulnerability in GNU InetUtils telnetd. The exploit leverages the Telnet ENVIRON option to inject a crafted USER variable, bypassing authentication and granting root access.

This repository contains a functional exploit for CVE-2026-24061, targeting a GNU inetutils-telnetd authentication bypass vulnerability. The exploit manipulates Telnet protocol negotiation to inject a crafted USER command, bypassing authentication and granting remote shell access.

The repository contains obfuscated malicious code in 'rce.py' that attempts to execute hidden payloads via base64-decompressed and XOR-decrypted data. The 'encypt.py' file includes a deceptive function '_initialize_core()' that constructs and executes a malicious command ('mshta.exe' fetching a remote payload).

The repository contains a functional Python-based scanner and exploit for CVE-2026-24061, which bypasses authentication in GNU InetUtils telnetd by injecting a malicious USER value via the Telnet NEW-ENVIRON option. The tool can detect vulnerable systems and confirm exploitation by executing commands like 'id' to verify root access.

This repository contains a functional Python exploit for CVE-2026-24061, which bypasses authentication in GNU inetutils-telnetd by injecting a malicious USER environment variable via the NEW_ENVIRON telnet option. The exploit establishes a connection, sends the crafted payload, and provides an interactive shell upon successful exploitation.

This repository provides a detailed forensic analysis of CVE-2026-24061, an authentication bypass vulnerability in GNU InetUtils telnetd. It includes a technical investigation, timeline, MITRE ATT&CK mapping, and evidence of exploitation and post-exploitation activities.

This repository provides a detailed technical analysis of CVE-2026-24061, an authentication bypass vulnerability in GNU InetUtils telnetd. It includes a timeline of exploitation, MITRE ATT&CK mapping, and indicators of compromise (IOCs) derived from a PCAP file analysis.

This repository contains a functional exploit for CVE-2026-24061, leveraging a vulnerability in telnetd to escalate privileges by manipulating the USER environment variable to switch to another user (borg) and access restricted files.

This repository contains a functional Python-based exploit for CVE-2026-24061, which allows authentication bypass in GNU InetUtils telnetd via USER environment variable injection, leading to an interactive root shell. It also includes detection for CVE-2026-32746, a pre-authentication buffer overflow in the LINEMODE SLC handler.

This repository contains a functional exploit for CVE-2026-24061, an argument injection vulnerability in GNU InetUtils telnetd. The exploit leverages the NEW-ENVIRON feature to inject a malicious USER variable, bypassing authentication and gaining root access via the login command.

This repository contains an Nmap NSE script designed to detect CVE-2026-24061, an authentication bypass vulnerability in GNU InetUtils telnetd. The script performs a full Telnet negotiation and checks for the presence of a shell prompt without a password challenge.

This repository contains a functional Python exploit for CVE-2026-24061, which bypasses authentication in GNU InetUtils telnetd by injecting a malicious USER environment variable via the Telnet NEW_ENVIRON option, resulting in unauthenticated root access.

The repository contains a functional exploit for CVE-2026-24061, a critical remote authentication bypass in GNU Inetutils telnetd. The exploit leverages the NEW-ENVIRON Telnet option to inject a malicious USER environment variable, bypassing authentication and granting a root shell.

This repository provides a containerized lab environment for CVE-2026-24061 but does not include any exploit code or technical details about the vulnerability itself. It sets up a telnet service on port 2323, likely as a placeholder for further testing.

This Perl script exploits CVE-2026-24061 by sending a crafted Telnet payload to trigger a vulnerability in the telnetd service, likely achieving remote code execution (RCE) via improper handling of Telnet option negotiation. The exploit forks processes to handle bidirectional communication, indicating an interactive shell may be obtained.

This repository contains a functional Python exploit for CVE-2026-24061, which bypasses authentication in GNU Inetutils telnetd by manipulating the USER environment variable via Telnet NEW-ENVIRON negotiation to execute '/bin/login -f root', resulting in an immediate root shell.

This repository contains a functional exploit for CVE-2026-24061, targeting a critical authentication bypass in GNU inetutils-telnetd via the NEW_ENVIRON telnet option. The exploit sends a crafted payload to achieve unauthenticated root access.

This PoC exploits CVE-2026-24061 by leveraging Telnet protocol negotiation to inject a USER environment variable, potentially bypassing authentication. It includes an interactive Telnet client with auto-login fallback for environments where NEW-ENVIRON is not supported.

This PoC exploits CVE-2026-24061, an argument injection vulnerability in GNU InetUtils telnetd (versions 1.9.3 to 2.7). It bypasses authentication by injecting '-f root' via the NEW_ENVIRON USER variable during telnet negotiation, leading to a remote root shell without authentication.

This repository contains a passive detection tool for CVE-2026-24061, a vulnerability in GNU inetutils telnet versions 1.9.3 to 2.7. The tool checks for the presence of telnet, identifies the implementation, and flags vulnerable versions without exploiting the vulnerability.

This repository contains a scanner for CVE-2026-24061, an authentication bypass vulnerability in GNU inetutils telnetd ≤ 2.7. The scanner checks for vulnerable systems by sending crafted payloads to exploit the flaw and verify root access.

This repository contains a writeup documenting an authentication bypass vulnerability (CVE-2026-24061) in GNU Inetutils telnetd. The author describes their walkthrough using Hackviser's lab environment but does not provide exploit code.

This repository contains a README.md file referencing a Python script for CVE-2026-24061, which appears to be a Telnet RCE vulnerability. The README outlines tasks such as understanding the code, modifying it for compatibility, and adding a GUI using simple-term-menu.

This repository is a README file referencing CVE-2026-24061, providing links to the NVD entry, related Docker images, software sources, and another PoC repository. It does not contain exploit code or technical details.

This repository contains a detailed technical analysis of CVE-2026-24061, an authentication bypass vulnerability in GNU InetUtils telnetd. The vulnerability allows unauthenticated attackers to gain root access by injecting malicious values into the USER environment variable, which is passed unsanitized to the login command.

This repository contains a Docker-based proof-of-concept for CVE-2026-24061, an authentication bypass vulnerability in GNU inetutils-telnetd. The exploit leverages the `-f` flag in `/usr/bin/login` to bypass authentication by injecting it via the `USER` environment variable.

This repository contains a Go-based exploit for CVE-2026-24061, an authentication bypass vulnerability in telnetd (inetutils). The exploit leverages the `-a` option and a malformed `USER` environment variable to bypass authentication and obtain a root shell.

This repository contains a README describing a supposed RCE exploit for CVE-2026-24061 affecting GNU Inetutils Telnet versions 1.9.3 to 2.7. However, no actual exploit code is provided, only screenshots and usage instructions.

This is a Python-based exploit for CVE-2026-24061, which automates the scanning and exploitation of a Telnet authentication bypass vulnerability. It uses pexpect to interact with Telnet sessions and provides an interactive shell upon successful exploitation.

This repository provides a detection tool for CVE-2026-24061, an authentication bypass vulnerability in GNU Inetutils Telnetd. The tool checks for uid=0/gid=0 patterns to identify potential exploitation of environment variable injection.

This repository provides a Docker-based lab demonstrating CVE-2026-24061, an authentication bypass vulnerability in GNU inetutils telnetd. The exploit leverages argument injection via the `USER` environment variable to bypass authentication and gain root access.

This exploit leverages a Telnet-based vulnerability (CVE-2026-24061) to send a crafted payload via netcat, likely achieving remote code execution (RCE) by injecting commands into a vulnerable service. The payload structure suggests it may exploit a buffer overflow or command injection flaw in the Telnet service.

This repository contains a Python-based scanner and exploit for CVE-2026-24061, which allows remote authentication bypass in GNU Inetutils telnetd via the `USER=-f root` environment variable. The tool scans for vulnerable telnet services and attempts to exploit the vulnerability to gain root shell access.

This repository contains a functional PoC exploit for CVE-2026-24061, targeting a vulnerability in `inetutils-telnetd` that allows unauthenticated remote attackers to gain root privileges by manipulating the `USER` environment variable via Telnet protocol subnegotiation.

This repository documents an authentication bypass vulnerability in GNU InetUtils telnetd (CVE-2026-24061) via argument injection by setting the USER environment variable to '-f root'. It includes setup instructions, exploit payload, and affected versions.

This repository contains a Bash script scanner for CVE-2026-24061, an authentication bypass vulnerability in GNU Inetutils telnetd. The script performs subnet scanning, banner grabbing, and active exploitation checks by injecting the `USER="-f root"` payload to verify vulnerability.

This PoC exploits a vulnerability in the Telnet protocol's NEW-ENVIRON option handling, allowing arbitrary command injection via malformed environment variable negotiation. The exploit establishes an interactive session with the target Telnet server and injects a payload (`-f root`) during subnegotiation.

This repository contains a working PoC for CVE-2026-24061, an authentication bypass vulnerability in GNU Inetutils telnetd (versions 1.9.3 to 2.7). The exploit leverages the USER environment variable to inject the '-f root' parameter into the login command, bypassing password authentication and granting root access.

This PoC exploits a vulnerability in Telnet protocol handling by sending a malicious NEW_ENVIRON option with a crafted USER parameter to trigger remote command execution. The exploit establishes a connection, negotiates Telnet options, and injects the payload to achieve RCE.

This repository contains a working proof-of-concept exploit for CVE-2026-24061, an authentication bypass vulnerability in GNU InetUtils telnetd. The exploit leverages argument injection via the `USER` environment variable to bypass authentication and gain root access.

This PoC exploits CVE-2026-24061, an authentication bypass in GNU InetUtils telnetd via argument injection. It leverages Telnet protocol negotiation to inject a malformed USER variable, bypassing authentication and potentially gaining remote root access.

This repository provides a detailed writeup and Nuclei template for detecting CVE-2026-24061, an argument injection vulnerability in GNU inetutils telnetd that allows unauthenticated root access via crafted USER environment variable.

The repository contains only a README with Docker commands to build and run a telnet service, but lacks any exploit code or details about CVE-2026-24061. It appears to be a placeholder or incomplete PoC.

This exploit targets a Telnet protocol vulnerability (CVE-2026-24061) by manipulating the NEW_ENVIRON option to inject a payload (`-f root`). It establishes an interactive session with the target, allowing command execution.

This Go-based PoC exploits CVE-2026-24061, an authentication bypass in GNU Inetutils telnetd (1.9.3-2.7) by injecting a malicious USER environment variable via the NEW-ENVIRON telnet option to execute `login -f root`, granting root access without credentials.

This Ruby script exploits a vulnerability in telnet services by manipulating environment variable negotiation (NEW_ENVIRON) to inject payloads. It checks for successful exploitation by detecting root or shell indicators in the response.

This repository contains a working PoC for CVE-2026-24061, a Telnet NEW-ENVIRON RCE vulnerability. The exploit leverages Telnet protocol negotiation to inject a malicious USER environment variable, achieving root access.

This PoC exploits CVE-2026-24061, an authentication bypass in GNU Inetutils telnetd, allowing unauthenticated remote root access via a malicious USER environment variable. It uses telnetlib3 to send a crafted payload and drops into an interactive shell upon successful exploitation.

This repository contains a functional GUI tool for detecting and exploiting CVE-2026-24061, an authentication bypass vulnerability in GNU Inetutils telnetd. The tool includes both scanning and exploitation capabilities, with support for multi-threading and interactive shell access.

This repository provides a functional exploit for CVE-2026-24061, an authentication bypass vulnerability in GNU InetUtils telnetd. The exploit leverages malformed Telnet NEW_ENVIRON negotiation to bypass authentication and gain remote root access.

This Metasploit module exploits CVE-2026-24061, an authentication bypass in GNU Inetutils telnetd. It manipulates the USER environment variable during Telnet sub-negotiation to inject '-f root', bypassing authentication and spawning a root shell.