Results 1 to 2 of 2

Thread: flaw: gain root remotly

Thread Tools
- Show Printable Version
Display
- Switch to Linear Mode
- Switch to Hybrid Mode
- Threaded Mode

Threaded View

August 29th, 2002, 06:16 PM #1
VictorKaum

View Profile

View Forum Posts
Senior since the 3 dot era

Join Date

Nov 2001

Posts

1,542
flaw: gain root remotly

rlogin -froot
this old flaw has recently gained new popularity. It's a high risk, cause root can be taken remotly, therefor, make sure /bin/login isn't vulnerable to the known bug, rlogin -froot
You need to upgrade your /bin/login or if you want to be sure, you can comment out the rlogin line in your /etc/inetd.conf

More info about the rlogin at: http://www.sei.cmu.edu/publications/...7abstract.html
http://www.mkssoftware.com/docs/man1/rlogin.1.asp
Cert advisory from 1997: (1997!!!)
http://www.cert.org/advisories/CA-1997-06.html
Reply With Quote

Quick Navigation *nix Security Discussions Top

« Previous Thread | Next Thread »

Posting Permissions

You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
[VIDEO] code is On
HTML code is Off

Forum Rules

Advertiser Disclosure: Some of the products that appear on this site are from companies from which TechnologyAdvice receives compensation. This compensation may impact how and where products appear on this site including, for example, the order in which they appear. TechnologyAdvice does not include all companies or all types of products available in the marketplace.

Thread: flaw: gain root remotly

Thread Tools

Display

Threaded View

flaw: gain root remotly

Posting Permissions