[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [cobalt-security] RAQ3 vulnerabilities
- Subject: Re: [cobalt-security] RAQ3 vulnerabilities
- From: ProServe - Peter Batenburg <peter@xxxxxxxxxxx>
- Date: Mon, 3 Dec 2001 10:45:49 +0100 (CET)
- Organization: ProServe (http://www.proserve.nl)
- List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>
I can not think of a reason why they should look in to it. As it says on
the defaced page:
Linux raq3.serve.com 2.2.12C3 #1 (ROM kernel) Wed Oct 6 15:16:06 PDT 1999 i586 unknown
So it seems like the box is booted from rom, and prolly they never
installed a security patch. I can think of about 20 ways to get root on
such a box.
Met vriendelijke groet/With kind regards,
Peter Batenburg
ProServe B.V.
Prisma 100
3364 DJ Sliedrecht
Tel.: 0184 - 423 815
Fax: 0184 - 417 160
http://www.proserve.nl
**********************************************************************
This email and any files transmitted with it are confidential and
intended solely for the use of the individual or entity to whom they
are addressed. If you have received this email in error please notify
the sender by replying the email and please remove
the files from your computer.
This footnote also confirms that this email message has been swept
for the presence of computer viruses.
**********************************************************************
On Sun, 2 Dec 2001, [iso-8859-1] Martín Fiumara wrote:
> Have you seen http://raq3.serve.com/.... It has been hacked and defaced...
> that server is a RAQ3, it would be good that cobalt support studie that case
> and provide the solution to that intrusion.
>