RE: [cobalt-security] FW: Cobalt RaQ4 Remote root exploit

["Goade, Matthew" <mgoade@xxxxxxxxxxxxxxx>]

Wouldn't it be easy to design a worm around this?  I haven't been able to find any news on this exploit/vuln so far...
A skilled coder could probably create a fairly large P2P RaQ war machine with this.

-----Original Message-----
From: Paul Jacobs [mailto:paul@xxxxxxxxxxxxxxxxxx]
Sent: Thursday, December 05, 2002 6:34 PM
To: cobalt-security@xxxxxxxxxxxxxxx
Subject: RE: [cobalt-security] FW: Cobalt RaQ4 Remote root exploit


At 03:50 PM 12/5/2002, you wrote:
>By the way, it does not allow a hacker into the box, it allows script 
>kiddies to root the box. Any newbie running mandrake could own a cobalt in 
>under 5 commands.

Ooooooooooo, that's got to hurt right in the mommy daddy jewels.
Can you say sun = microsoft?, damm soon Microsoft will no longer be the top 
system to hate.



>-----Original Message-----
>From: Mailing List [mailto:listonly@xxxxxxxxxxxxxxxxxxxx]
>Sent: Thursday, December 05, 2002 5:25 PM
>To: cobalt-security@xxxxxxxxxxxxxxx
>Subject: Re: [cobalt-security] FW: Cobalt RaQ4 Remote root exploit
>
>
>On 12/5/02 5:14 PM, "Goade, Matthew" wrote:
>
> > Very easy to use. Many hosts will get hacked I bet.
>
>Just incredible!! Get a patch from Sun/Cobalt that allows a hacker into the
>box. How long has that exploit been out??
>
>--
>Thanks!!
>David Thurman
>List Only at Web Presence Group Net
>Join Cobaltfacts
>http://list.cobaltfacts.com/mailman/listinfo/cobaltfacts/
>
>
>_______________________________________________
>cobalt-security mailing list
>cobalt-security@xxxxxxxxxxxxxxx
>http://list.cobalt.com/mailman/listinfo/cobalt-security
>_______________________________________________
>cobalt-security mailing list
>cobalt-security@xxxxxxxxxxxxxxx
>http://list.cobalt.com/mailman/listinfo/cobalt-security

_______________________________________________
cobalt-security mailing list
cobalt-security@xxxxxxxxxxxxxxx
http://list.cobalt.com/mailman/listinfo/cobalt-security