Users login

Create an account »

JOIN XATRIX

Users login

Home » Hacking News » Multiple Xinetd Vulnerabilities

Multiple Xinetd Vulnerabilities

by Phiber on September 1st, 2001 During a recent audit, a number of possible security vulnerabilities were uncovered. In addition, it was revealed that some vendor fixes for Bugtraq ID 2971 may not completely eliminate the vulnerability.


Exp1loitation of the conditions discovered during the audit (if any are exploitable) could lead to a denial of service or remote root compromise.


Solution:

Xinetd Xinetd 2.3:


Conectiva RPM 6.0 xinetd-2.3.2-1U60_1cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/6.0/RPMS/xinetd-2.3.2-1U60_1cl.i386.rpm

Conectiva RPM 6.0 xinetd-devel-2.3.2-1U60_1cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/6.0/RPMS/

Conectiva RPM 6.0 xinetd-devel-static-2.3.2-1U60_1cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/6.0/RPMS/xinetd-devel-static-2.3.2-1U60_1cl.i386.rpm

Conectiva RPM 7.0 xinetd-2.3.2-1U70_1cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/7.0/RPMS/xinetd-2.3.2-1U70_1cl.i386.rpm

Conectiva RPM 7.0 xinetd-devel-static-2.3.2-1U70_1cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/7.0/RPMS/xinetd-devel-static-2.3.2-1U70_1cl.i386.rpm

Conectiva RPM 7.0 xinetd-devel-2.3.2-1U70_1cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/7.0/RPMS/xinetd-devel-2.3.2-1U70_1cl.i386.rpm

Immunix RPM 7.0 xinetd-2.3.3-1_imnx.i386.rpm
http://download.immunix.org/ImmunixOS/7.0/updates/RPMS/xinetd-2.3.3-1_imnx.i386.rpm

Xinetd upgrade xinetd-2.3.3.tar.gz
http://www.xinetd.org/xinetd-2.3.3.tar.gz

Xinetd Xinetd 2.1.8.9pre9:

Xinetd upgrade xinetd-2.3.3.tar.gz
http://www.xinetd.org/xinetd-2.3.3.tar.gz

Xinetd Xinetd 2.1.8.9pre8:

Xinetd upgrade xinetd-2.3.3.tar.gz
http://www.xinetd.org/xinetd-2.3.3.tar.gz

Xinetd Xinetd 2.1.8.9pre7:

Xinetd upgrade xinetd-2.3.3.tar.gz
http://www.xinetd.org/xinetd-2.3.3.tar.gz

Xinetd Xinetd 2.1.8.9pre6:

Xinetd upgrade xinetd-2.3.3.tar.gz
http://www.xinetd.org/xinetd-2.3.3.tar.gz

Xinetd Xinetd 2.1.8.9pre5:

Xinetd upgrade xinetd-2.3.3.tar.gz
http://www.xinetd.org/xinetd-2.3.3.tar.gz

Xinetd Xinetd 2.1.8.9pre3:

Xinetd upgrade xinetd-2.3.3.tar.gz
http://www.xinetd.org/xinetd-2.3.3.tar.gz

Xinetd Xinetd 2.1.8.9pre2:

Xinetd upgrade xinetd-2.3.3.tar.gz
http://www.xinetd.org/xinetd-2.3.3.tar.gz

Xinetd Xinetd 2.1.8.9pre15:

Xinetd upgrade xinetd-2.3.3.tar.gz
http://www.xinetd.org/xinetd-2.3.3.tar.gz

Xinetd Xinetd 2.1.8.9pre14:

Xinetd upgrade xinetd-2.3.3.tar.gz
http://www.xinetd.org/xinetd-2.3.3.tar.gz

Xinetd Xinetd 2.1.8.9pre13:

Xinetd upgrade xinetd-2.3.3.tar.gz
http://www.xinetd.org/xinetd-2.3.3.tar.gz

Xinetd Xinetd 2.1.8.9pre12:

Xinetd upgrade xinetd-2.3.3.tar.gz
http://www.xinetd.org/xinetd-2.3.3.tar.gz

Xinetd Xinetd 2.1.8.9pre11:

Xinetd upgrade xinetd-2.3.3.tar.gz
http://www.xinetd.org/xinetd-2.3.3.tar.gz

Xinetd Xinetd 2.1.8.9pre10:

Xinetd upgrade xinetd-2.3.3.tar.gz
http://www.xinetd.org/xinetd-2.3.3.tar.gz

Xinetd Xinetd 2.1.8.9pre1:

Xinetd upgrade xinetd-2.3.3.tar.gz
http://www.xinetd.org/xinetd-2.3.3.tar.gz

Xinetd Xinetd 2.1.8.8pre3:

Xinetd upgrade xinetd-2.3.3.tar.gz
http://www.xinetd.org/xinetd-2.3.3.tar.gz

Xinetd Xinetd 2.1.8.8:

Xinetd upgrade xinetd-2.3.3.tar.gz
http://www.xinetd.org/xinetd-2.3.3.tar.gz

FYI:

Xinetd is a recent implementation of the Internet service 'super-daemon', known as 'inetd'. It is shipped with some versions of Linux by default.


Newsletter signup

Signup to our monthly newsletter and stay in touch with IT news!

Free E-books

We've got ebooks! But they're not online. :( Please give us a few days to bring downloads back.

Contact

Have something to say or just wanna drop us a line? Please keep this in mind: to spam, we reply with spam.

Contact us »