Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

bugtraq logo Bugtraq mailing list archives

Info on some security holes reported against SCO Unixware.
From: aarons () SCO COM (Aaron Sigel)
Date: Thu, 13 Jan 2000 13:07:49 +0000

Greetings,

Recent Bugtraq posts have exposed security holes with a couple
packages distributed with SCO's Skunkware CD.  These packages
are:
        majordomo (wrapper, resend)
        orion (pis, mkpis)

These issues are security holes in the distributed versions of these
packages, and are not SCO security holes.

Furthermore, on a system with all of the security patches installed,
the distributed exploit for components of orion (pis, mkpis) will not
even work.

Still, we do recognize that these issues come up from time to time
in open licensed software that we do not control or maintain.  This is
precisely the reason for the Skunkware disclaimer.

To quote the Skunkware disclaimer:

        Remember, Skunkware is freely distributed and unsupported software. No
        warranty is made on any of the Skunkware components. Support and
        assistance with this software is not provided by SCO.

Updated versions will appear on the SCO skunkware site
(http://www.sco.com/skunkware) as they come available
and as they get built for SCO platforms.


--
Aaron Sigel, Secure Technologies Group, SCO - aarons () sco com

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]