Users login

Create an account »

JOIN XATRIX

Users login

Home » Hacking News » Caldera Systems, Inc. Security Advisory

Caldera Systems, Inc. Security Advisory

by phiber on March 13th, 2001 There are several buffer overflows in imap, ipop2d and ipop3d. These overflows usually only make it possible for local users to gain access to a process running under their own UID.

However, due to a misconfiguration, it is possible for remote attackers to gain access to the 'nobody' account and run programs or further exploits on the attacked machine.





Vulnerable Versions



System Package

-----------------------------------------------------------

OpenLinux 2.3 All packages previous to

imap-4.6.BETA-2



OpenLinux eServer 2.3.1 All packages previous to

and OpenLinux eBuilder imap-4.6.BETA-2



OpenLinux eDesktop 2.4 All packages previous to

imap-4.7-2





Solution

Install the latest upgrades. You can find the links if you download the whole advisory.

Visit Caldera Systems


Newsletter signup

Signup to our monthly newsletter and stay in touch with IT news!

Free E-books

We've got ebooks! But they're not online. :( Please give us a few days to bring downloads back.

Contact

Have something to say or just wanna drop us a line? Please keep this in mind: to spam, we reply with spam.

Contact us »