Bugtraq: Re: [BLACKLIST] [Full-disclosure] Solaris telnet vulnberability

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Bugtraq mailing list archives

Re: [BLACKLIST] [Full-disclosure] Solaris telnet vulnberability - how many on yournetwork?

From: Joep Vesseur <Joep.Vesseur () Sun COM>
Date: Thu, 15 Feb 2007 00:29:30 +0100

Gadi,

[...]
One note: although it could just as well be a bug, who says it was not a
backdoor in the early 90's?

Also, I understand this does not work on older Solaris/SunOS systems

(anyone can verify?)


I can. It is not present in anything before Solaris 10.

which adds to my personal interest in the
possibility. I refuse to believe someone is that funny/sad.


Not sure what you mean here... You don't believe this is a (very
unfortunate) accident?

From where I stand (pretty close to the fire) this is pretty much
what it looks like (an extended multi-file, multi-entrance-point
change with unforseen and unnoticed interdependencies).

Joep

By Date By Thread

Current thread:

Re: [BLACKLIST] [Full-disclosure] Solaris telnet vulnberability - how many on yournetwork? Thierry Zoller (Feb 12)
- RE: [BLACKLIST] [Full-disclosure] Solaris telnet vulnberability - how many on yournetwork? Michael Wojcik (Feb 13)
  - Re: [BLACKLIST] [Full-disclosure] Solaris telnet vulnberability - how many on yournetwork? Casper . Dik (Feb 13)
  - RE: [BLACKLIST] [Full-disclosure] Solaris telnet vulnberability - how many on yournetwork? Gadi Evron (Feb 14)
    - Re: [BLACKLIST] [Full-disclosure] Solaris telnet vulnberability - how many on yournetwork? Joep Vesseur (Feb 15)
    - Re: [BLACKLIST] [Full-disclosure] Solaris telnet vulnberability - how many on yournetwork? Gadi Evron (Feb 15)
    - Re: [BLACKLIST] [Full-disclosure] Solaris telnet vulnberability - Darren Reed (Feb 15)