Bigbruin.com
Home :: Reviews & Articles ::
Forum :: Info :: :: Facebook :: Youtube :: RSS Feed
Search  :: Register :: Log in
HUGE Solaris Exploit
Post new topic   Reply to topic    Bigbruin.com Forum Index -> Software
View previous topic :: View next topic  
Author Message
edvallie
Put Beer Here


Joined: 07 Aug 2005
Posts: 1255
Location: Computer

PostPosted: Mon, 12 Feb 2007 23:15:21    Post Subject: HUGE Solaris Exploit Reply with quote View Single Post

Did anybody else read about this? I'm not sure if BB would appreciate posting the link to the actual exploit here, but a warning to all disable telnet on any solaris boxes that you're in control of.

What do you guys make of it? Pretty embarrasing imo...

Linkage:

http://erratasec.blogspot.com/2007/02/trivial-remote-solaris-0day-disable.html

_________________
ABAP? What did you call me?


Last edited by edvallie on Mon, 12 Feb 2007 23:30:23; edited 1 time in total
Back to top
View user's profile Send private message
Little Bruin
Boo Boo

Joined: 07 Apr 2003
Posts: 667
Location: Pic-A-Nic Basket
JimBowy
Moderator


Joined: 02 Aug 2003
Posts: 1627

PostPosted: Mon, 12 Feb 2007 23:18:35    Post Subject: Reply with quote View Single Post

havent heard anything about it, PM me linkage?
- Jim

_________________
- Jim
Back to top
View user's profile Send private message
edvallie
Put Beer Here


Joined: 07 Aug 2005
Posts: 1255
Location: Computer

PostPosted: Mon, 12 Feb 2007 23:30:44    Post Subject: Reply with quote View Single Post

I got permission from the big guy to post up the link, it's edited into the main topic.
_________________
ABAP? What did you call me?
Back to top
View user's profile Send private message
Blue|Fusion
Rated XXX


Joined: 30 May 2005
Posts: 441
Location: Cleveland, OH

PostPosted: Tue, 13 Feb 2007 09:51:20    Post Subject: Reply with quote View Single Post

It is indeed a rather bad exploit. Another reason I always disable Telnet on Linux right after installation. SSH with RSA key's baby! Screw passwords!

P.S. I'm so excited my University has canceled today!!!

_________________
5 home-built PCs, ASUS A6Jc Laptop, and a PowerEdge 2650 - all running Gentoo. Now if only I can get a car and plane to run it. Take a look at my Gallery!
Back to top
View user's profile Send private message
edvallie
Put Beer Here


Joined: 07 Aug 2005
Posts: 1255
Location: Computer

PostPosted: Tue, 13 Feb 2007 09:59:08    Post Subject: Reply with quote View Single Post

Blue|Fusion wrote:
It is indeed a rather bad exploit. Another reason I always disable Telnet on Linux right after installation. SSH with RSA key's baby! Screw passwords!

P.S. I'm so excited my University has canceled today!!!


w00t Razz

_________________
ABAP? What did you call me?
Back to top
View user's profile Send private message
BeerCheeze
*hick*


Joined: 14 Jun 2003
Posts: 9285
Location: At the Bar

PostPosted: Tue, 13 Feb 2007 10:42:39    Post Subject: Reply with quote View Single Post

Anyone running Telnet deserves to be exploited. SSH is just as easy to set up.
Back to top
View user's profile Send private message
Display posts from previous:   
Post new topic   Reply to topic    Bigbruin.com Forum Index -> Software All times are GMT - 4 Hours
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You cannot attach files in this forum
You can download files in this forum
Contact Us :: On Facebook :: On Youtube :: Newsletter :: RSS Feed :: FAQ :: Links :: Sponsors :: Privacy Policy
Copyright © 2000 - 2023 Bigbruin.com - All rights reserved