Sun Solaris sadmind vulnerability

Howard Dahdah 17 September, 2003 11:58

Sun reports that a unprivileged user may be able to execute arbitrary commands with the permissions of the sadmind(1M) daemon on Solaris systems which have sadmind(1M) enabled in inetd.conf(4).

"The sadmind(1M) daemon normally runs with "root" (uid 0) privileges. If the sadmind(1M) daemon is utilizing the default security level authentication mechanism of AUTH_SYS (see secure_rpc(3NSL)), users may be able to forge AUTH_SYS credentials."

The operating systems affected are: Sun Solaris 9, Sun Solaris 8 and Sun Solaris 7.

More information is found at
http://au.sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert%2F56740&zone_32=category%3Asecurity

Computerworld Buyer's Guide - Vendors Matched to this Article

Dimension Data , SafeNet , GFI , Sagem

More about CGI

Comments

Post new comment

Have your say!

Computerworld Buyer's Guide - Vendors Matched to this Article

Dimension Data , SafeNet , GFI , Sagem

Hot jobs: Software implementation analyst

Discussions on The Computerworld Forum

Whitepapers

Read up on the latest ideas and technologies from companies that sell hardware, software and services.

Zones

Zones provide focussed content from Computerworld and leading technology partners.

Newsletter Subscription

RSS Feeds

Computerworld Today

Show all RSS feeds

More >

Computerworld Webinar

Thursday, June 11th, 2009
10:30am EST (Sydney, Australia)
Screening at your PC

Computerworld is hosting a 30 minute live webinar to help you to learn how unified communications can save you money, foster innovation and business agility by making it easier for people to find, reach and collaborate with one another.

Register Now

+

Savings do add up: How organisations are saving thousands by adopting Unified Communications and Collaboration. 15 June, 2009 12:01

This week's CW Live podcast features a discussion between Audrey William, research director at research firm Frost & Sullivan Australia, and Craig Campbell, business unit executive for Integrated Communications Services at IBM Australia / New Zealand on why companies are adopting unified communications, and whether there is any benefit to hosting a unified communications solution in the cloud.

[ MP3 (2.22 MB) | Windows Media (2.26 MB) ]
+

Storage Virtualisation: Increasing Information Availability and Lowering Costs 02 June, 2009 12:36

This week's CW Live features a discussion between Dr Kevin McIsaac, IBRS Research's Advisor for Virtualisation and Craig McKenna, Consulting Technical Leader, System Storage, for IBM's Growth Markets division, on why storage virtualisation is key to an organisation's information management plan.

[ MP3 (4.62 MB) | Windows Media (4.69 MB) ]
+

Computerworld Live Podcast #100: Enterprise Cloud Computing and Network Virtualisation 25 March, 2009 13:46

CW Live speaks with Matthew Zanner, HP ProCurve worldwide director of datacentre solutions, about how cloud computing is changing the way IT professionals are designing their networks and running their datacentres.

[ MP3 (3.25 MB) | Windows Media (2.48 MB) ]
+

Computerworld Live Podcast #99: Reducing the Costs of Enterprise Mobility 28 January, 2009 10:43

CW Live speaks with Mark Thompson, Global Sales/Marketing Manager for HP's ProCurve Networking Business, to discuss strategies for reducing the cost of enterprise mobility, including tips on securing a wireless network, smart network design strategies, and advice for simplifying the management and support of wireless networks.

[ MP3 (3.63 MB) | Windows Media (2.77 MB) ]
+

Computerworld Live Podcast #98: The Future of Datacentre IP 18 December, 2008 10:33

CW Live speaks withLin Nease, Director of Emerging Business for HP ProCurve, to discuss the future of networks, including the effect of IP-based storage on datacentres, new capacity requirements generated by the use of 10Gb Ethernet, and how an efficient network design can slash energy and cooling costs, and help enterprises build a "green" image.

[ MP3 (5.45 MB) | Windows Media (4.15 MB) ]

More >

Data Center Eco-Nomics

Discover the pathway towards greener, more efficient operations. Learn how real customers are leveraging their green efforts to drive toward the dynamic data centre of the future. Click through to watch this webinar now.

Enterprise IT Buyer's Guide

Find Technology Vendors Fast

Find vendors by name | Find by category

Comments

Post new comment

Savings do add up: How organisations are saving thousands by adopting Unified Communications and Collaboration. 15 June, 2009 12:01

Storage Virtualisation: Increasing Information Availability and Lowering Costs 02 June, 2009 12:36

Computerworld Live Podcast #100: Enterprise Cloud Computing and Network Virtualisation 25 March, 2009 13:46

Computerworld Live Podcast #99: Reducing the Costs of Enterprise Mobility 28 January, 2009 10:43

Computerworld Live Podcast #98: The Future of Datacentre IP 18 December, 2008 10:33

Acronis launches integrated deduplication and backup & recovery solution 09 July, 2009 15:46

Mindjet adds to visual collaboration leadership team with new Vice President of Marketing 09 July, 2009 14:34

Kordz Releases "immortal" HDMI Cable 09 July, 2009 14:26

Synterra and Verizon Business Sign Agreement to Provide Customers Direct Network Connectivity to Russia and the World 09 July, 2009 11:04

NetApp Declines to Revise Bid for Data Domain; Merger Agreement Terminated 09 July, 2009 10:57

Data Center Eco-Nomics

Buying Guides

Latest Products

Buying Guides

Latest Products