drucken bookmarks versenden konfigurieren admin pdf Sicherheit: Login als beliebiger User in netkit
| Name: |
Login als beliebiger User in netkit |
|
| ID: |
TLSA-2007-25 |
|
| Distribution: |
TurboLinux |
|
| Plattformen: |
Turbolinux 10 Server, Turbolinux 10 Server x64 Edition, Turbolinux Appliance Server 2.0, Turbolinux 8 Server, Turbolinux Appliance Server 1.0 Hosting Edition, Turbolinux Appliance Server 1.0 Workgroup Edition |
|
| Datum: |
Do, 5. April 2007, 03:50 |
|
| Referenzen: |
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-0956 |
|
Originalnachricht |
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
--------------------------------------------------------------------------
Turbolinux Security Advisory TLSA-2007-25
http://www.turbolinux.co.jp/security/
security-team@turbolinux.co.jp
--------------------------------------------------------------------------
Original released date: 04 Apr 2007
Last revised: 04 Apr 2007
Package: netkit-combo
Summary: telnetd vulnerability
More information:
Netkit-combo is a package collenction of Internet tools.
The telnet daemon (telnetd) allows unauthorized login as an
arbitrary user, when presented with a specially crafted username.
Impact:
The telnet daemon (telnetd) allows unauthorized login as an arbitrary user.
Affected Products:
- Turbolinux Appliance Server 2.0
- Turbolinux 10 Server x64 Edition
- Turbolinux Appliance Server 1.0 Hosting Edition
- Turbolinux Appliance Server 1.0 Workgroup Edition
- Turbolinux 10 Server
- Turbolinux 8 Server
<Turbolinux Appliance Server 2.0>
Source Packages
Size: MD5
netkit-combo-0.17-30.src.rpm
790456 152f02face820a9f7ab5954c84cb56db
Binary Packages
Size: MD5
finger-0.17-30.i586.rpm
17785 60cf38fd1a6ecfbeea99cdb40085bd56
ftp-0.17-30.i586.rpm
49030 5d8f1f2179a5abe2feae53878a1b30e2
routed-0.17-30.i586.rpm
29853 6a9aeddd015b118f3d5c5f4e482b4409
rsh-0.17-30.i586.rpm
59250 8939737707fda30ff2dc357ea997fa31
rusers-0.17-30.i586.rpm
23406 420fbcc636836a57698663c74966ad9b
rwall-0.17-30.i586.rpm
15856 a25a4390e700f541d1e075017290f077
rwho-0.17-30.i586.rpm
22404 20544e3c2777b0e667cc4b5ce40552fc
telnet-client-0.17-30.i586.rpm
48935 11cfed09511c0d86ab9d84c82df489c6
telnet-server-0.17-30.i586.rpm
29177 87bf81721dd00da202fd588ba709d1f7
timed-0.17-30.i586.rpm
36843 047b20d9ac353e6065fa60c371f80a30
writed-0.17-30.i586.rpm
9994 50eca7b433d9ca20b2988143f2412536
<Turbolinux 10 Server x64 Edition>
Source Packages
Size: MD5
netkit-combo-0.17-30.src.rpm
790456 286a34da55edb837ffebb117bee15ad4
Binary Packages
Size: MD5
biff-0.17-30.x86_64.rpm
15979 53bbe15508e77c1f53a8af8c256ab52c
bootparamd-0.17-30.x86_64.rpm
17820 1ccc9bdb9132e368ee0cdfcabac92140
finger-0.17-30.x86_64.rpm
19227 dfa159f13917033f590b7123dea707db
finger-server-0.17-30.x86_64.rpm
12635 29a96fbeea6665c9643a1da9d6e6843f
ftp-0.17-30.x86_64.rpm
53830 eb672bab5d07c394199ee6f8f6a69dbb
ntalk-0.17-30.x86_64.rpm
29601 de34e0460c37b1803bbe193540487a8a
routed-0.17-30.x86_64.rpm
31866 9d68dc9eef98c15ddcb7263e3e28b8ca
rsh-0.17-30.x86_64.rpm
61453 362a4bb309734c3d2b0ae640b9ef2255
rusers-0.17-30.x86_64.rpm
25160 60ebc990beeac4ce45a28bae67b59764
rwall-0.17-30.x86_64.rpm
16284 c512bd413cbc3f513d24394b7f7e5354
rwho-0.17-30.x86_64.rpm
23260 a40362e4f93d9fd4cdb479b73ce125ad
telnet-client-0.17-30.x86_64.rpm
55007 fe22be92b24f90e56fa1f3ae18fd04d2
telnet-server-0.17-30.x86_64.rpm
31982 4a5862b9db9c111f07a8382856d8c95e
timed-0.17-30.x86_64.rpm
39642 30988423b99ba40b1b6ad50b82ace275
writed-0.17-30.x86_64.rpm
10280 4ad23e3cdc7754ad483e1a9b2e051fa1
<Turbolinux Appliance Server 1.0 Hosting Edition>
Source Packages
Size: MD5
netkit-combo-0.17-30.src.rpm
790456 e97d046bcd56af63bb8e1f48ab322c03
Binary Packages
Size: MD5
finger-0.17-30.i586.rpm
17006 25954172a5cd1341d88ee6feaa58cdc3
ftp-0.17-30.i586.rpm
48187 2ecb60f3c757864eae9cbb6eda364304
rsh-0.17-30.i586.rpm
58364 1104757c46eb86cda6954ffee61f12d1
telnet-0.17-30.i586.rpm
70082 38745177ddbd347ddc7948a85e393252
<Turbolinux Appliance Server 1.0 Workgroup Edition>
Source Packages
Size: MD5
netkit-combo-0.17-30.src.rpm
790456 4936268926c42d70b02655c49a6393a1
Binary Packages
Size: MD5
finger-0.17-30.i586.rpm
17180 4f7a1c1effaf6d8a28afa210585243c7
ftp-0.17-30.i586.rpm
48345 f765d40433098c84d531ddad9ae3207b
rsh-0.17-30.i586.rpm
58504 a96184e6544565908a50e6e8441538b2
telnet-0.17-30.i586.rpm
70183 55ceadb8cf8738aa7bcbddf888560fd9
<Turbolinux 10 Server>
Source Packages
Size: MD5
netkit-combo-0.17-30.src.rpm
790456 152f02face820a9f7ab5954c84cb56db
Binary Packages
Size: MD5
finger-0.17-30.i586.rpm
17785 60cf38fd1a6ecfbeea99cdb40085bd56
ftp-0.17-30.i586.rpm
49030 5d8f1f2179a5abe2feae53878a1b30e2
routed-0.17-30.i586.rpm
29853 6a9aeddd015b118f3d5c5f4e482b4409
rsh-0.17-30.i586.rpm
59250 8939737707fda30ff2dc357ea997fa31
rusers-0.17-30.i586.rpm
23406 420fbcc636836a57698663c74966ad9b
rwall-0.17-30.i586.rpm
15856 a25a4390e700f541d1e075017290f077
rwho-0.17-30.i586.rpm
22404 20544e3c2777b0e667cc4b5ce40552fc
telnet-client-0.17-30.i586.rpm
48935 11cfed09511c0d86ab9d84c82df489c6
telnet-server-0.17-30.i586.rpm
29177 87bf81721dd00da202fd588ba709d1f7
timed-0.17-30.i586.rpm
36843 047b20d9ac353e6065fa60c371f80a30
writed-0.17-30.i586.rpm
9994 50eca7b433d9ca20b2988143f2412536
<Turbolinux 8 Server>
Source Packages
Size: MD5
netkit-combo-0.17-30.src.rpm
790456 58da9984176c398fbcaa16b19c04dcf9
Binary Packages
Size: MD5
biff-0.17-30.i586.rpm
14859 7efbea84491a524d2769a9cbfea86870
finger-0.17-30.i586.rpm
17176 e7001b0f8e81bb9a2c63c6ce406e0a8b
ftp-0.17-30.i586.rpm
48372 5a50c6ce60e53179302ba4da14ce3bcd
ntalk-0.17-30.i586.rpm
26058 f2d7e2daca552ea814f7f91025daf190
routed-0.17-30.i586.rpm
29084 4777b4d931f8c7190739de88a3e3e964
rsh-0.17-30.i586.rpm
58502 0146d3e4484ebd9bee828236a9282d4f
rusers-0.17-30.i586.rpm
23663 a9ea606179787b5dc2e9325279af07c1
rwall-0.17-30.i586.rpm
15277 1432e6cee58dde15115e92d821a387e5
rwho-0.17-30.i586.rpm
21868 dc7a0d0b3076b25f6b083cc04febeb74
telnet-0.17-30.i586.rpm
70201 753ed76be958fc6e0d167c23d0f27337
timed-0.17-30.i586.rpm
36335 82bb00e035a96ef5d42f8c06a7ef28c9
writed-0.17-30.i586.rpm
9508 da706011547908c5763d15f29849bc88
References:
CVE
[CVE-2007-0956]
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-0956
--------------------------------------------------------------------------
Revision History
04 Apr 2007 Initial release
--------------------------------------------------------------------------
Copyright(C) 2007 Turbolinux, Inc. All rights reserved.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.7 (GNU/Linux)
iD8DBQFGE7CcK0LzjOqIJMwRAmnyAJ49EmRtaTJ3RMV7c77hgxsJxFcI4QCgsoo4
XJn99Y+UPTBgiXwj6v7Ml4E=
=xAGL
-----END PGP SIGNATURE-----
|
|
|
|
