Telnet worm squirms, inoculation script released

Telnet worm squirms, inoculation script released

Summary: Amidst reports on a worm squirming through a code execution hole in the Solaris 10/11 telnet daemon (in.telnetd), Sun Microsystem has released an inoculation script for systems that might still be unpatched.

SHARE:
TOPICS: Tech Industry
3
Amidst reports on a worm squirming through a code execution hole in the Solaris 10/11 telnet daemon (in.telnetd), Sun Microsystem has released an inoculation script for systems that might still be unpatched.

In an alert issued today, Sun confirmed it was aware of an "active worm" exploiting the vulnerability, which was patched earlier this month.

The inoculation script was released along with instructions on how to determine if a Solaris 10 or Nevada system may be infected.

According to Arbor Networks, the worm attempts to log into your systems as the users "lp" or "adm" and execute a bunch of shell commands on unpatched systems.

The advice to IT admins: Patch now or simply disable Telnet.

Topic: Tech Industry

Kick off your day with ZDNet's daily email newsletter. It's the freshest tech news and opinion, served hot. Get it.

Talkback

3 comments
Log in or register to join the discussion
  • It's Microsoft's fault!

    ;)
    Confused by religion
    • What?

      You mean you are finally getting it!? ]:)
      Linux User 147560
  • Wait a sec, isn't this the one that was fixed in 9 hours?!

    http://blogs.zdnet.com/security/?p=34

    Guess there's more to security response than just checking in the source code fix.
    PB_z