Stolen Program Easily Cracks BSD Servers - Other Unix OS vulnerable

posted onJuly 25, 2001
by hitbsecnews

A free operating system used by thousands of Web sites has a serious new security hole that is being exploited by hackers, according to the developers of FreeBSD. An advisory released Monday by FreeBSD.org says that a bug in the Telnet program included with FreeBSD and related operating systems can allow remote attackers to gain complete control of the Web server.

A listing at the FreeBSD site reveals that the operating system is used by high-profile companies including Yahoo, Sony and Microsoft's Hotmail. The Telnet daemon is enabled by default on all FreeBSD installations, "and is being actively exploited in the wild," according to the advisory. Telnet is an Internet protocol that allows a computer user to log onto another computer terminal remotely. The program commonly is used by administrators to remotely control Web servers....

Stolen Program Cracks BSD Servers
By Brian McWilliams, Newsbytes
BERLIN, GERMANY,
24 Jul 2001, 12:16 PM CST

FreeBSD's "Telnetd" buffer overflow vulnerability was discovered by a group
of network security enthusiasts called Teso. The group posted a description of the bug to
Bugtraq, a security mailing list, on July 18.

While Teso did not publicly release a program that exploits the hole, a member of the
group told Newsbytes it has written such a tool. The exploit was subsequently
"stolen," according to the member, and posted today to several security mailing
lists.

Teso told Newsbytes the stolen tool is already in widespread use by computer attackers,
a development that forced the group to release its advisory to the public even through a
security patch was not yet available.

Statistics from the Safemode security information site show that several Web servers
running FreeBSD were defaced by attackers in recent months. The compromised servers
include FreeBSD's own site, as well as that of TiVo Inc., the SANS Institute, Themes.org,
and a Microsoft site in Belgium.

According to the Teso advisory, other UNIX operating systems also based on code from
Berkeley Software Design Inc., including BSDi and NetBSD, are vulnerable to the Telnetd
exploit as well.

FreeBSD has released a patch to correct the problem. As a temporary workaround, system
operators can disable the Telnet service, according to FreeBSD.org.

The Teso advisory on Telnetd is online at http://www.team-teso.net/advisories.php
.

The FreeBSD advisory is viewable at http://groups.google.com/groups?hl=en&safe=off&thì6e7f197404d6b3,1
.

Source

Tags

Networking

You May Also Like

Other Articles In This Section

Recent News

Tuesday, July 9th

China's APT40 gang is ready to attack vulns within hours or days of public release
AI-Powered Super Soldiers Are More Than Just a Pipe Dream
The president ordered a board to probe a massive Russian cyberattack. It never did.
Massive car dealer ransom attack is mostly over after 2 weeks of work-arounds

Wednesday, July 3rd

“RegreSSHion” vulnerability in OpenSSH gives attackers root on Linux
Two of the German military’s new spy satellites appear to have failed in orbit

Friday, June 28th

Indonesian Airports, Data Centres Hit By Worst Cyberattack in Years
Cisco Talos warns of wider security implications following Snowflake breach

Thursday, June 27th

I Wore Meta Ray-Bans in Montreal to Test Their AI Translation Skills. It Did Not Go Well
Researchers upend AI status quo by eliminating matrix multiplication in LLMs
YouTube tries convincing record labels to license music for AI song generator
Critical MOVEit vulnerability puts huge swaths of the Internet at severe risk
Julian Assange to plead guilty but is going home after long extradition fight

Thursday, June 13th

Hackers show off jailbroken checkm8-vulnerable iPad and Apple TV running iPadOS 18 & tvOS 18 respectively
One of the major sellers of detailed driver behavioral data is shutting down
Turkish student creates custom AI device for cheating university exam, gets arrested

Wednesday, June 12th

Chinese-Made Biometric Access System Has 24 Vulnerabilities
Apple and OpenAI currently have the most misunderstood partnership in tech
Adobe to update vague AI terms after users threaten to cancel subscriptions
China state hackers infected 20,000 Fortinet VPNs

Tuesday, June 11th

Russia Is Targeting Germany With Fake Information as Europe Votes
Apple announces macOS 15 Sequoia with window tiling, iPhone mirroring, and more
Apple integrates ChatGPT into Siri, iOS, and macOS
British police to scan 480,000 Formula 1 fans’ faces at Silverstone
Hackers steal “significant volume” of data from hundreds of Snowflake customers

Friday, June 7th

7,000 LockBit decryption keys now in the hands of the FBI, offering victims hope
FCC pushes ISPs to fix security flaws in Internet routing
Can a technology called RAG keep AI models from making stuff up?
How to Lead an Army of Digital Sleuths in the Age of AI

Thursday, June 6th

Mystery object waits nearly an hour between radio bursts
Apple refused to pay bug bounty to Russian cybersecurity firm Kaspersky Lab
Ex-Microsoft security expert torches Windows' new 'Recall' feature
The Age of the Drone Police Is Here

Wednesday, June 5th

Ukrainian Systems Hit by Cobalt Strike Via a Malicious Excel File
TikTok Hack Targets ‘High-Profile’ Users via DMs