[1106] in linux-security and linux-alert archive
[linux-security] CERT#1157 Re: vulnerability in splitvt
daemon@ATHENA.MIT.EDU (CERT(sm) Coordination Center)
Wed Aug 28 20:09:03 1996
From: CERT(sm) Coordination Center <cert@cert.org>
Date: Tue, 27 Aug 96 8:45:21 EDT
Reply-To: cert@cert.org
To: Stunt Pope <markjr@shmooze.net>
Cc: linux-security@tarsier.cv.nrao.edu, cert@cert.org
-----BEGIN PGP SIGNED MESSAGE-----
Hello,
Thanks for your message concerning a vulnerability in the
'splitvt' program:
[REW: Quoting trimmed]
We distributed a vendor-initiated bulletin on this topic in January
of this year. It is available from
ftp://info.cert.org/pub/cert_bulletins/VB-96.01.splitvt
[REW: Quoting trimmed]
Since it would appear that your system(s) has suffered a root
compromise, we encourage you to recover from this break-in by taking
the steps outlined in the appended checklist in accordance with your
local policies and procedures. Furthermore, we encourage you to check
all of your systems, not just those that you know or suspect to be
compromised.
[REW: Oops. It seems that the "splitvt" problem is already quite old,
and thus shouldn't have made it to the list. Sorry for the slip.
Subject closed OK?]