[6117] in Kerberos


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: Telnet vulnerability--shared library loading

daemon@ATHENA.MIT.EDU (Thierry Besancon)
Fri Nov 3 04:40:51 1995

To: kerberos@MIT.EDU
Date: 02 Nov 1995 19:17:02 GMT
From: besancon@excalibur.ens.fr (Thierry Besancon)

   From: Casper.Dik@Holland.Sun.COM (Casper H.S. Dik - Network Security Engineer)
   Newsgroups: comp.security.unix,comp.protocols.kerberos
   Date: 1 Nov 1995 08:52:21 GMT
   Organization: Sun Microsystems, Netherlands

   Solaris 2.5 telnetd was fixed just in time for FCS.

   However, anyone running almost any alpha/beta version of Solaris 2.5
   is vulnerable to this problem.

   Solaris 2.4 and earlier Sun telnetds (including SunOS 4.x) did
   not pass environment variables other than $TERM.

Would you mind telling us what introducing environment variable
passing was useful for in alpha/beta ? At this time, EVERYBODY
concerned with security knows how shared libraries can be
dangerous. So what's the use of playing with fire ??? 

--

		Thierry


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[6117] in Kerberos

Re: Telnet vulnerability--shared library loading

daemon@ATHENA.MIT.EDU (Thierry Besancon)Fri Nov 3 04:40:51 1995

daemon@ATHENA.MIT.EDU (Thierry Besancon)
Fri Nov 3 04:40:51 1995