SUMMARY : Sun Reports Major Security Bug, Patch

From: Waqar Hafiz (whafiz@london.micrognosis.com)
Date: Fri Nov 29 1996 - 10:00:43 CST


Original post

A news service (Techwire) published the story that Sun Microsystems
has reported that a bug in Versions 2.5 and 2.5.1 of the Solaris
operating system leaves any workstation or server running that
software vulnerable to unauthorized root-level access by local or
remote intruders.
Sun has almost immediately issued patches for the security loophole.

Solution & Observation

1. Patches 103187-09 (2.5) & 103612-06 (2.5.1) solve the problem.

2. This is not a forum to report security alerts.
Sun Managers who don't already belong should join the Sun Security
Alert mailing list. To do so, send e-mail to security-alert@sun.com
with the *subject* line "subscribe CWS your_e-mail-address"

Waqar Hafiz
email : whafiz@london.micrognosis.com

Thanks are due to:

1.tkevans@eplrx7.es.dupont.com (Tim Evans)
2.Phil Poole <poole@ncifcrf.gov>



This archive was generated by hypermail 2.1.2 : Fri Sep 28 2001 - 23:11:17 CDT