Slashdot Mirror

← Back to Stories (view on slashdot.org)

Solaris Telnet 0-day vulnerability

Posted by Hemos on Monday February 12, 2007 @01:40AM from the frantically-trying-to-fix dept.

philos writes "According to SANS ISC, there's a vulnerability in Solaris 10 and 11 telnet that allows anyone to remotely connect as any account, including root, without authentication. Remote access can be gained with nothing more than a telnet client. More information and a Snort signature can be found at riosec.com. Worse, this is almost identical to a bug in AIX and Linux rlogin from way back in 1994."

1 of 342 comments (clear)

Min score:

Reason:

Sort:

sex with a Ta3o by Anonymous Coward · 2007-02-12 02:59 · Score: -1, Offtopic

Niggers everywhere Move any equipment