[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-security] Sun Cobalt Control Station - remote root exploit!

Subject: Re: [cobalt-security] Sun Cobalt Control Station - remote root exploit!
From: Michael Stauber <cobalt@xxxxxxxxxxxxxx>
Date: Fri, 26 Sep 2003 09:50:53 +0200
Organization: SOLARSPEED.NET
List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>

Hi Anders,

> Is this problem isolated to the Sun Cobalt Control Station,
> or does it affect the RaQ 550 and other Cobalt machines too ?
> (as they also come with lax security checks on admin pages)

I gave that a quick check last night. The page that was called on the CS 
doesn't exist on the RaQ550. At least not under the same name and URL. But 
I'll give it another look as soon as I can.

> Wonder if the problem remains in their new Sun Control Station
> offering... It seems to be based on the same code and system ?
> http://wwws.sun.com/software/controlstation/

I don't know. 

> PS. Would it be possible to patch just that page in PHP,
>     by adding the required authentication checks to GUI ?

That might be an option. However, the fault is so hideous and blatant that I 
lost complete faith in the Controlstation and will not hook one to the net 
until I've had the chance to give the entire GUI a full code review.

-- 

With best regards,

Michael Stauber

References:
- Re: [cobalt-security] Sun Cobalt Control Station - remote root exploit!
  - From: Anders

Prev by Date: Re: [cobalt-security] Sun Cobalt Control Station - remote root exploit!
Next by Date: Re: [cobalt-security] Sun Cobalt Control Station - remote root exploit!
Previous by thread: Re: [cobalt-security] Sun Cobalt Control Station - remote root exploit!
Next by thread: Re: [cobalt-security] Sun Cobalt Control Station - remote root exploit!

Sun Cobalt Security Message Index

Sun Cobalt Security Thread Index