home *** CD-ROM | disk | FTP | other *** search
- Newsgroups: alt.security
- Path: sparky!uunet!mcsun!sun4nl!fwi.uva.nl!casper
- From: casper@fwi.uva.nl (Casper H.S. Dik)
- Subject: Re: CERT ADVISORY - Multiple SunOS Vulnerabilities
- Message-ID: <1992Jul22.212329.12887@fwi.uva.nl>
- Sender: news@fwi.uva.nl
- Nntp-Posting-Host: adam.fwi.uva.nl
- Organization: FWI, University of Amsterdam
- References: <9207211919.AA20501@tictac.cert.org> <1992Jul22.154650.9967@jarvis.csri.toronto.edu>
- Date: Wed, 22 Jul 1992 21:23:29 GMT
- Lines: 39
-
- flaps@dgp.toronto.edu (Alan J Rosenthal) writes:
-
- >In comp.security.announce, cert-advisory-request@CERT.ORG (CERT Advisory) writes:
- > >CA-92:15 CERT Advisory
- > > July 21, 1992
- > > Multiple SunOS Vulnerabilities Patched
- > >--------------------------------------------------------------------------
-
- > >NFS jumbo patch upgrade, SunOS 4.1, 4.1.1, 4.1.2, all architectures
-
- >What's new with THIS jumbo patch? Is it the same jumbo patch?
-
- From the README: (several fixes, but this is one that's security related)
-
- BUGID: 1095935
- NFS server in which a client presenting a 32-bit uid in which
- the 16 low-order bits are 0 gets interpreted as root on the server.
-
- > >ICMP redirects patch upgrade, SunOS 4.1, 4.1.1, 4.1.2, all architectures
- > ...
- > > allows an intruder to close existing network connections to and from
- > ^^^^^
- > ...
- > >II. Impact
- > > A remote user may deny network services on a Sun system.
- > ^^^^
-
- >So which is it, can they close existing ones or only deny new ones?
-
- It's pretty much the same thing. Breaking of connections should
- already be considered ``denial of service''. If you bomb a
- sun with certain packets, it will reset TCP connections
- all the time. It is not the case that you can send one packet (or a few)
- to cripple a Sun (or another machine running similar networking code).
-
- Casper
- --
- | Casper H.S. Dik
- | casper@fwi.uva.nl
-
