Bugtraq mailing list archives

Re: exploit for CERT advisory CA-98.11?

From: svh () CERT ORG (Shawn Hernan)
Date: Fri, 18 Sep 1998 16:29:49 -0400


-----BEGIN PGP SIGNED MESSAGE-----

Hello,

Several of our Solaris 2.6 systems appear to be under attack using
whatever exploit prompted CERT advisory CA-98.11.


We'd be interested in hearing about attempted or successful exploits
of the tooltalk vulnerability. We haven't received any confirmed
reports that this vulnerability has been successfully exploited.

We encourage sites to report exploit attempts (successful or
unsuccessful) to us, even if no assistance is needed; our documents
can be useful in an emergency even to an experienced administrator and
the reports help us gauge the nature, scope, and frequency of security
incidents on the Internet.

A set of guidelines on reporting an incident is available at

        http://www.cert.org/tech_tips/incident_reporting.html


Thanks,
Shawn

Shawn V. Hernan
CERT (R) Coordination Center
Software Engineering Institute
Carnegie Mellon University
Pittsburgh, PA  USA  15213-3890


-----BEGIN PGP SIGNATURE-----
Version: 2.6.2

iQCVAwUBNgLBlVNp6S1tajQ5AQF5NwQAq4LITYstmWbAwz1pJg1bKPKuLnGuQRxH
gEWD/+8TzyPzDS7VwMGW3M+UWwx1eZW9075AYFURNQhfue3Z4PdtvK4zcVNgOiZd
utBNXJqO4x9oeyWwZhAb334ihOxJUe6meQTz58724tIKGJtXyEpBEs9sUT9Whd5P
54hPTlkAKHQ=
=om4H
-----END PGP SIGNATURE-----


---
Shawn Hernan
Member of the Technical Staff
CERT Coordination Center
412-268-7090

Current thread:

Re: exploit for CERT advisory CA-98.11? Shawn Hernan (Sep 18)