Telnet worm squirms, inoculation script released

Summary:Amidst reports on a worm squirming through a code execution hole in the Solaris 10/11 telnet daemon (in.telnetd), Sun Microsystem has released an inoculation script for systems that might still be unpatched.

Amidst reports on a worm squirming through a code execution hole in the Solaris 10/11 telnet daemon (in.telnetd), Sun Microsystem has released an inoculation script for systems that might still be unpatched.

In an alert issued today, Sun confirmed it was aware of an "active worm" exploiting the vulnerability, which was patched earlier this month.

The inoculation script was released along with instructions on how to determine if a Solaris 10 or Nevada system may be infected.

According to Arbor Networks, the worm attempts to log into your systems as the users "lp" or "adm" and execute a bunch of shell commands on unpatched systems.

The advice to IT admins: Patch now or simply disable Telnet.

Topics: Tech Industry

About

Ryan Naraine is a journalist and social media enthusiast specializing in Internet and computer security issues. He is currently security evangelist at Kaspersky Lab, an anti-malware company with operations around the globe. He is taking a leadership role in developing the company's online community initiative around secure content managem... Full Bio

zdnet_core.socialButton.googleLabel Contact Disclosure

Kick off your day with ZDNet's daily email newsletter. It's the freshest tech news and opinion, served hot. Get it.

Related Stories

The best of ZDNet, delivered

You have been successfully signed up. To sign up for more newsletters or to manage your account, visit the Newsletter Subscription Center.
Subscription failed.