[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-security] New Exploit?

Subject: Re: [cobalt-security] New Exploit?
From: Taco Scargo <Taco.Scargo@xxxxxxx>
Date: Tue, 11 Dec 2001 09:11:53 +0100 (MET)
List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>

Hi Paul,

> I got hacked using the exploit below.  Are Cobalts supposed to be
> protected against this?
> 
> I use SSH2 and have patches in place.  They seem to have got into root via
> one of our users.
> 
> Does anyone know what version of Linux is used on the Raq4?

The latest kernel for RaQ 4 is 2.2.16C28. This version includes the patch to 
close the above mentioned rule. So either you hadn't installed the latest kernel 
(which was posted on September 20, 2001) or you didn't reboot after 
installation.

With regards,

Taco Scargo

Product Manager, EMEA

Sun Microsystems		Tel. +31 (33) 451 6319
Sun Cobalt Server Appliances	taco.scargo@xxxxxxx

Follow-Ups:
- Re: [cobalt-security] New Exploit?
  - From: David Kennedy CISSP

Prev by Date: Re: [cobalt-security] New Exploit?
Next by Date: Re: SV: [cobalt-security] bindshell'... INFECTED (PORTS: 1524
Previous by thread: Re: [cobalt-security] New Exploit?
Next by thread: Re: [cobalt-security] New Exploit?

Sun Cobalt Security Message Index

Sun Cobalt Security Thread Index