[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-security] Security Hardening Update 2.0.1 MAJOR FLAW!!!!!! ACTION REQUIRED!

Subject: Re: [cobalt-security] Security Hardening Update 2.0.1 MAJOR FLAW!!!!!! ACTION REQUIRED!
From: Gerald Waugh <gwaugh@xxxxxxxxxxxxxxxxxxxxxxx>
Date: Thu, 15 Aug 2002 14:59:52 -0400 (EDT)
List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>

On Thu, 15 Aug 2002, Zeffie wrote:

> Hi Folks,
>
>     The recent RaQ4-en-Security-2.0.1-SHP.pkg allows a remote attacker to
> cause system crashes.  To avoid this I suggest you disable the Scan
> Detection in Parameters by selecting "do nothing".  Else you might not be
> happy...
>
> I have written a small script that can reproduce the problem consistently.
>
> I don't seem to be able to find any way to contact Sun cobalt about this.
>
> what to do?  maybe a whitepaper advert??

Yes, a "whitepaper advert" is definitely in order,
explain how this problem occurs.

--
Gerald
http://frontstreetnetworks.com | Website Hosts & SOHO Networks
229 Front Street, Ste.#C, New Haven, CT. 06513 United States
voice +1 203-785-0699 | fax +1 203-785-1787

Follow-Ups:
- RE: [cobalt-security] Security Hardening Update 2.0.1 MAJOR FLAW!!!!!! ACTION REQUIRED!
  - From: Sean Ward
- Re: [cobalt-security] Security Hardening Update 2.0.1 MAJOR FLAW!!!!!! ACTION REQUIRED!
  - From: Zeffie

References:
- [cobalt-security] Security Hardening Update 2.0.1 MAJOR FLAW!!!!!! ACTION REQUIRED!
  - From: Zeffie

Prev by Date: [cobalt-security] Security Hardening Update 2.0.1 MAJOR FLAW!!!!!! ACTION REQUIRED!
Next by Date: RE: [cobalt-security] Security Hardening Update 2.0.1 MAJOR FLAW!!!!!! ACTION REQUIRED!
Previous by thread: [cobalt-security] Security Hardening Update 2.0.1 MAJOR FLAW!!!!!! ACTION REQUIRED!
Next by thread: RE: [cobalt-security] Security Hardening Update 2.0.1 MAJOR FLAW!!!!!! ACTION REQUIRED!

Sun Cobalt Security Message Index

Sun Cobalt Security Thread Index