[6939] in bugtraq
Solaris 2.5.1 patch not effective?
daemon@ATHENA.MIT.EDU (Tom Perrine)
Thu Jun 11 17:36:18 1998
Date: Tue, 9 Jun 1998 17:18:28 -0700
Reply-To: Tom Perrine <tep@SDSC.EDU>
From: Tom Perrine <tep@SDSC.EDU>
To: BUGTRAQ@NETSPACE.ORG
I have two reports from other UC campuses that exploits of the Solaris
ufsrestore bug are being used against *sparc* hosts.
At least one of the sites reports that patch 104490-05 (Solaris 2.5.1,
sparc arch) was applied on a system that was compromised (presumably
via this method).
Consider this an *inconclusive* warning that the Sun ufsrestore patch
*may* not be effective. I have a call into Sun on this one. If we
can get the binary of the exploit, it might be interesting.
[The reporting sites are BCC'ed on this note. If they want to go
public, its up to them.]
--tep
--
Tom E. Perrine (tep@SDSC.EDU) | San Diego Supercomputer Center
http://www.sdsc.edu/~tep/ | Voice: +1.619.534.5000
Been there, done that, erased the evidence, blackmailed the witnesses...
