Re: Solaris 2.5.1 party piece

Doug Hughes (Doug.Hughes@ENG.AUBURN.EDU)
Thu, 19 Jun 1997 16:04:16 -0500

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Razvan Dragomirescu: "/cgi-bin/handler - more notes"
Previous message: Nir Soffer: "Core file anomalies under BSDi 3.0"
Maybe in reply to: Alan Cox: "Solaris 2.5.1 party piece"
Next in thread: Bojan Zdrnja: "Re: Solaris 2.5.1 party piece"

> Well CERT have had this for a year, AUSCERT for a couple of weeks and
>now its time bugtraq had it
>
>cc solarisuck.c -o solarisuck -lsocket
>rsh localhost ./solarisuck
>
<code deleted>

>
>Workarounds:
> 1. Disable rsh and any non root owned inetd tasks - breaks remote tar etc
> 2. Run an OS that the vendor doesnt take a year to fix bugs in
>
> I have the original emails from Sun folks (Casper Dik, Alec Muffett and co)
> to prove Sun have sat on this for ages.
>
> Alan
>

This appears to be fixed in 2.6 at any rate..

--
____________________________________________________________________________
Doug Hughes                                     Engineering Network Services
System/Net Admin                                Auburn University
                        doug@eng.auburn.edu

Next message: Razvan Dragomirescu: "/cgi-bin/handler - more notes"
Previous message: Nir Soffer: "Core file anomalies under BSDi 3.0"
Maybe in reply to: Alan Cox: "Solaris 2.5.1 party piece"
Next in thread: Bojan Zdrnja: "Re: Solaris 2.5.1 party piece"