Results 1 to 2 of 2

Thread: flaw: gain root remotly

  1. August 29th, 2002, 06:16 PM #1
    VictorKaum
    VictorKaum is offline
    Senior since the 3 dot era
    Join Date
    Nov 2001
    Posts
    1,542

    flaw: gain root remotly

    rlogin -froot
    this old flaw has recently gained new popularity. It's a high risk, cause root can be taken remotly, therefor, make sure /bin/login isn't vulnerable to the known bug, rlogin -froot
    You need to upgrade your /bin/login or if you want to be sure, you can comment out the rlogin line in your /etc/inetd.conf

    More info about the rlogin at: http://www.sei.cmu.edu/publications/...7abstract.html
    http://www.mkssoftware.com/docs/man1/rlogin.1.asp
    Cert advisory from 1997: (1997!!!)
    http://www.cert.org/advisories/CA-1997-06.html
    Reply With Quote Reply With Quote
  2. August 29th, 2002, 08:06 PM #2
    Kajun
    Kajun is offline
    Junior Member
    Join Date
    Aug 2002
    Posts
    3
    Thanks for the heads up VictorKaum. Some computers on my network weren't configured correctly for this certin exploit.
    Reply With Quote Reply With Quote
« Previous Thread | Next Thread »

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

Forum Rules