Buffer overfllow in /bin/login under System V updated since 13.12.2001
Published:		03.10.2002
Source:		X-FORCE
SecurityVulns ID:		1623
Type:		remote
Level:		10/10
Description:		Buffer overflow on large name= request. Heap overflow in TTYPROMPT is trivially exploitable with remote root compromise.

Affected:		IBM : AIX 4.3
		SUN : Solaris 8
		IBM : AIX 5.1
		CISCO : SC2200
		CISCO : VSC3000
		CISCO : PGW2200
		CISCO : BAMS
		CISCO : VSPT
		CISCO : IDS 3.0

Original document		Jonathan S, Solaris 2.6, 7, 8 (03.10.2002)
		CISCO, Security Advisory: Solaris /bin/log vulnerability (11.04.2002)
		X-FORCE, ISSalert: ISS Advisory: Buffer Overflow in /bin/login (13.12.2001)

Files:		. SOLARIS LOGIN remote via telnetd
Discuss:		Read or add your comments to this news (0 comments)