Subject: Notice to users running Unix at home
Date: Mon, Aug 19 2002 -- 3:40 PM
Posted by: Mara's Staff Account
Panix customers who run home versions of Unix should pay close attention
to these recent security advisories:
OpenSSH remote root compromise:
http://www.openssh.org/txt/iss.adv
BSD-based operating system resolver client buffer overflow:
http://www.kb.cert.org/vuls/id/803539
Apache chunking remote vulnerability:
http://httpd.apache.org/info/security_bulletin_20020620.txt
The resolver client buffer overflow is particularly scary, since it
could theoretically be exploited through a firewall or on a machine
that is not running any server programs.
We recommend that all users who run Unix at home pay close attention
to these advisories and upgrade their software appropriately as soon
as possible.
| |
