[9] in Security FYI
new security hole found in rpc.cmsd program
daemon@ATHENA.MIT.EDU (mhpower@MIT.EDU)
Tue Jul 13 11:56:20 1999
From: mhpower@MIT.EDU
Date: Tue, 13 Jul 1999 11:56:15 -0400
Message-Id: <199907131556.LAA31809@the-oz.mit.edu>
To: security-fyi@MIT.EDU
Reply-To: net-security@MIT.EDU
There has been a recent announcement of a security problem in the Unix
rpc.cmsd program -- the problem can allow intruders to break in to
your computer remotely, gaining root access immediately in most
cases. Intruders have been exploiting this vulnerability actively
within the past week to break into MIT computers, particularly ones
running Solaris. The security problem may also be present on systems
running Digital Unix, HP-UX, SunOS 4, and some other Unix variants.
Please check your Unix systems for the presence of an rpc.cmsd entry
in inetd.conf, and disable the program if it exists. For more
information about reconfiguring your computers to eliminate this new
security problem, see
http://web.mit.edu/net-security/www/fyi/fyi-1999-003-cmsd.html
Matt Power
Network Security team, MIT Information Systems
