[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[cobalt-users] BIND vulnerabilities

Subject: [cobalt-users] BIND vulnerabilities
From: "L. James Prevo" <president@xxxxxxxxx>
Date: Fri Feb 2 19:46:11 2001
List-id: Mailing list for users to share thoughts on Cobalt products. <cobalt-users.list.cobalt.com>

I got this from my server provider, anyone know anything about this?
Could there be a problem with the Raq 3 and if there is a fix for it?
---

Three new vulnerabilities have been found in various versions of BIND
which can allow an attacker to gain remote root access.

For details, please see:  http://www.cert.org/advisories/CA-2001-02.html

All customers who run BIND -- that is, most customers running DNS under a
Unix/Linux system -- should IMMEDIATELY determine whether or not they are
vulnerable, and if so, upgrade as soon as possible.

Cobalt has yet to release a patch;  Cobalt users should visit Cobalt's
support section on a regular basis, and investigate applying this patch as
soon as possible.

Users of other systems should consult their vendors' support sites and
investigate applying patches they recommend.

We cannot stress how important this is;  the last time there was a BIND
vulnerability, we had reports of customers being compromised upwards of 6
months after we issued a patch.  Don't let this happen to you.  It's not
pleasant, and generally requires a complete re-install of the operating
system to get things right again.

---

Thanks,

L. James Prevo
President
The Prevo Network
http://www.prevo.net
"The Place Where We Unlock Your Doors to the Net!"

Follow-Ups:
- Re: [cobalt-users] BIND vulnerabilities
  - From: Kevin D

Prev by Date: [cobalt-users] MajorDomo Setup
Next by Date: [cobalt-users] RaQ3 FrontPage Passwords
Previous by thread: [cobalt-users] MajorDomo Setup
Next by thread: Re: [cobalt-users] BIND vulnerabilities

Sun Cobalt Users Message Index

Sun Cobalt Users Thread Index