[2409] in bugtraq
telnetd hole, and related /bin/login problem?
daemon@ATHENA.MIT.EDU (Dan Stromberg - OAC-DCS)
Mon Nov 20 22:05:52 1995
Date: Mon, 20 Nov 1995 15:07:30 -0800
Reply-To: Bugtraq List <BUGTRAQ@CRIMELAB.COM>
From: Dan Stromberg - OAC-DCS <strombrg@hydra.acs.uci.edu>
X-To: BUGTRAQ@CRIMELAB.COM
To: Multiple recipients of list BUGTRAQ <BUGTRAQ@CRIMELAB.COM>
At least one vendor has chosen to include a new /bin/login with their
telnetd patch. At least one vendor is shipping a patch with a new
telnetd, but without a new /bin/login.
I gather another advisory may be forthcoming for another, related
hole, this time in /bin/login.
Can somebody name that hole?
