[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[cobalt-security] Raq 550 Remote Exploits?

Subject: [cobalt-security] Raq 550 Remote Exploits?
From: "Skeeve Stevens" <skeeve@xxxxxxxxxx>
Date: Sat, 24 Jan 2004 10:08:08 +1100
List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>

I have just had a Raq 550, full patched get hacked and trashed.

The /bin directory was deleted and I don't know what else as that is all
I could from remotely logging in as admin (unable to login as root)

The web interface was still controllable, but mail was being flakey
obviously missing things from /bin... Mailing lists especially.

Anyone know of any SSH or remote exploit holes for the Raq550 and how I
can go about protecting myself?

I know Sun (Solaris 9) and HP/Compaq both have new SSH
vulnerabilities... Could this be related?


_______________________________________________________
Skeeve Stevens, RHCE     Email: skeeve@xxxxxxxxxx
Website: www.skeeve.org  - Telephone: (0414) 753 383
Address: P.O Box 1035, Epping, NSW, 1710, Australia

eIntellego - skeeve@xxxxxxxxxxxxxx - www.eintellego.net
_______________________________________________________
Si vis pacem, para bellum

Follow-Ups:
- RE: [cobalt-security] Raq 550 Remote Exploits?
  - From: Keith Ford
- Re: [cobalt-security] Raq 550 Remote Exploits?
  - From: Michael Stauber

Prev by Date: [cobalt-security] "Rash" of Qube 3 Updates...
Next by Date: [cobalt-security] Defunct CGI processes after last 5 patches
Previous by thread: [cobalt-security] "Rash" of Qube 3 Updates...
Next by thread: RE: [cobalt-security] Raq 550 Remote Exploits?

Sun Cobalt Security Message Index

Sun Cobalt Security Thread Index