Press CTRL-D to bookmark us
Welcome Guest Login / Register / Members
Search in  
Top Submit newsSubscribe
Communication | Computer Crime | Digital Audio, Video, Photo | General News | Hardware | Internet | Mobile | PDA | Security | Software | Vulnerability |
Previous articleBack to news listNext article
 

 Sponsored links

Want to become one of our authors and see your work published on ALLSeek.iNFO ?
 
 Caldera/SCO UnixWare/Open UNIX Drivers May Cause Denial of Service Conditions
Categorie: Vulnerability
Posted: 2002-10-24 by ReCall
Views: 342
Source: Click here
 		Current Rating: Not rated
Poor Best
 Details
<b>Description:</b> A denial of service vulnerability was reported in the UnixWare/Open UNIX operating system. A remote user may be able to cause the system to become unstable.



It is reported that a remote user can conduct a remote copy ('rcp') of the /proc partition to cause the entire system to become unusable. The flaw apparently exists in the Driver_atup and Driver_mp drivers.



The cause of the vulnerability was not disclosed.



Impact: A remote user can cause the system to become unusable.



Solution: The vendor has released a fix.







For UnixWare 7.1.1:



Location of Fixed Binaries



ftp://ftp.sco.com/pub/updates/OpenUNIX/CSSA-2002-SCO.41





Verification



MD5 (erg712112c.pkg.Z) = 106da290e2483bc7aba11d7f486b50c4



md5 is available for download from

ftp://ftp.sco.com/pub/security/tools





Installing Fixed Binaries



Upgrade the affected binaries with the following sequence:



Download erg712112c.pkg.Z to the /var/spool/pkg directory



# uncompress /var/spool/pkg/erg712112c.pkg.Z

# pkgadd -d /var/spool/pkg/erg712112c.pkg





For Open UNIX 8.0.0:



Location of Fixed Binaries



ftp://ftp.sco.com/pub/updates/OpenUNIX/CSSA-2002-SCO.41





Verification



MD5 (erg712112d.pkg.Z) = b0e485feccbbe76aefb4061f9b7e6192



md5 is available for download from

ftp://ftp.sco.com/pub/security/tools





Installing Fixed Binaries



Upgrade the affected binaries with the following sequence:



Download erg712112d.pkg.Z to the /var/spool/pkg directory



# uncompress /var/spool/pkg/erg712112d.pkg.Z

# pkgadd -d /var/spool/pkg/erg712112d.pkg
 
Syndication
Permalink Email this

The URI to TrackBack this entry is:
http://allseek.info/news/trackback.php?id=128

User comments (post your comments here)

Only registerd members can post comments and articles
 
Previous articleBack to news listNext article
 


InterJOB.su
Bookmark us | Set As Homepage | Advertising | Contact Us | Recomend us | Link us | Links | Terms

SpyLOG Page Rank Checker
LAST QUERIES