[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-security] RaQFuCK

Subject: Re: [cobalt-security] RaQFuCK
From: "Jonathan Michaelson" <michaelsonjd@xxxxxxxxxxx>
Date: Thu, 24 Oct 2002 18:54:57 +0100
List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>

Jay,

> IIRC, the hack doesn't really do anything until you reboot the machine. If
> the script has been executed, you definitely ought to go through the
machine
> with a fine toothed comb.

I played with it when it came out and it's an instant root exploit. If
you've had it run successfully on your server then a CD Restore is the
simplest way to be sure it's clean.

--
Regards,
Jonathan Michaelson
Commercial CGI Scripting, Web Hosting
Web-based Email, Homepage Creation and Live Help products
http://www.webumake.com

References:
- Re: [cobalt-security] RaQFuCK
  - From: Jay Summers

Prev by Date: [cobalt-security] RaQFuCK
Next by Date: RE: [cobalt-security] port 3731
Previous by thread: Re: [cobalt-security] RaQFuCK
Next by thread: Re: [cobalt-security] RaQFuCK

Sun Cobalt Security Message Index

Sun Cobalt Security Thread Index