Sun Solaris 10 and 11 - Telenet Security Issue
Posted
Tuesday, February 13, 2007 3:26 PM
by
hwaldron
For Sun Solaris versions 10 and 11, a serious Telenet issue has surfaced. If run in it's default configuration, it can allow unauthorized users to gain root level access. It is recommended that Telenet be disabled until a security fix is available.
Sun Solaris 10 and 11 - Telenet Security Issue
http://isc.sans.org/diary.html?storyid=2220
http://sunsolve.sun.com/search/document.do?assetkey=1-26-102802-1
http://www.kb.cert.org/vuls/id/881872
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-0882
QUOTE: There is a major zero day bug announced in solaris 10 and 11 with the telnet and login combination. It has been verified. In my opinion NOBODY be should running telnet open to the internet. Versions of Solaris 9 and lower do not appear to have this vulnerability. The telnet daemon passes switches directly to the login process which looks for a switch that allows root to login to any account without a password. If your telnet daemon is running as root it allows unauthenticated remote logins.