105566-06 was installed on our machine that was hit, When I reported it to Sun I recieved e-mail that they are working on a fresh fix, and it'll be available 'soon'. Perhaps this time they'll fix all the buffer overflows. Luckly the twerp that went after my machine was a clueless twit and didn't know what he was about, also the machine was fairly well protected agains the common forms of attack. > I want to point out that there is a rather fresh 105566-07 for Solaris > 2.6 which claims "4230754 Possible buffer overflows in rpc.cmsd" fixed. > There is rather old 103670-03 for Solaris 2.5[.1] which claims "1264389 > rpc.cmsd security problem." fixed. Then there is 104976-03 claiming > "1265008 : Solaris 2.x rpc.cmsd vulnerabity" fixed. Are these the ones > you refer to as "patched versions" and "could be problematic"? > > Andy. > ----- Stephen C. Woods; UCLA SEASnet; 2567 Boelter hall; LA CA 90095; (310)-825-8614 Finger for public key scwat_private,Internet mail:scwat_private
This archive was generated by hypermail 2b30 : Fri Apr 13 2001 - 14:51:55 PDT