TUCoPS :: Unix :: General :: telnet01.htm

Sequent DYNIX/ptx 2.x telnet file overwrite bug
 
Vulnerability

    telnet(1)

Affected

    Sequent DYNIX/ptx 2.x

Description

    There seem to be a  security problem with the telnet  command that
    will allow any user on the system to overwrite any file. For  this
    to  work  telnet  must  be  suid  root.  Using  the  command  will
    overwrite  any  file  in  any  filesystem  with a zero-length root
    owned file. To exploit the  bug try:  /usr/bin/telnet -n  filename
    hostname

Solution

    Remote the suid bit from telnet.

TUCoPS is optimized to look best in Firefox® on a widescreen monitor (1440x900 or better).
Site design & layout copyright © 1986-2025 AOH