Re: [Full-disclosure] Solaris telnet vulnberability - how many on your network?
- From: Gadi Evron <ge@xxxxxxxxxxxx>
- Date: Tue, 13 Feb 2007 14:49:24 -0600 (CST)
On Tue, 13 Feb 2007 Casper.***@xxxxxxx wrote:
Am I missing something? This vulnerability is close to 10 years old.
It was in one of the first versions of Solaris after Sun moved off of
the SunOS BSD platform and over to SysV. It has specifically to do w=
ith
how arguments are processed via getopt() if I recall correctly.
You're confused with AIX/Linux
Solaris did not have the -f option in login until much later.
Hi Casper. While we have you here, any idea on when Sun will be patching
this issue?
Many thanks,
Gadi.
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
- Follow-Ups:
- References:
- Prev by Date: Re: [Full-disclosure] Solaris telnet vulnberability - how many on your network?
- Next by Date: Re: [Full-disclosure] Solaris telnet vulnberability - how many on your network?
- Previous by thread: Re: [Full-disclosure] Solaris telnet vulnberability - how many on your network?
- Next by thread: Re: [Full-disclosure] Solaris telnet vulnberability - how many on your network?
- Index(es):
