HP3000-L Archives

June 2000, Week 5

HP3000-L@RAVEN.UTC.EDU
Options: Use Monospaced Font
Show Text Part by Default
Show All Mail Headers

Message: [<< First] [< Prev] [Next >] [Last >>]
Topic: [<< First] [< Prev] [Next >] [Last >>]
Author: [<< First] [< Prev] [Next >] [Last >>]

Print Reply
Subject:
Re: TurboIMAGE Security Vulnerability
From:
Sletten Kenneth W KPWA <[log in to unmask]>
Reply To:
Sletten Kenneth W KPWA <[log in to unmask]>
Date:
Thu, 29 Jun 2000 17:58:18 -0700
Content-Type:
text/plain
Parts/Attachments:
text/plain (21 lines) 
Phillip was alert and noticed that our DBUTIL security
vulnerability has already been making the rounds.  He found it
at:

> http://www.securityfocus.com/advisories/2364

For those who do not normally keep close tabs on how well the
"rest of the world" tracks computer and network security issues,
a visit to the above is just one instructive example.  Our DBUTIL
issue is right there on the home page (www.securityfocus.com)
under "VULNERABILITIES".  Bugtraq id= 1405.  Summary sez:

"A vulnerability exists whereby a user can utilize
DBUTIL.PUB.SYS to elevate their privileges. This affect
versions 4.5 and newer of the MPE/iX operating system from
Hewlett Packard. The exact nature of this vulnerability is not known."

I like the last part...     :-)

Ken Sletten

ATOM RSS1 RSS2