• United States



by Dave Gradijan

Zero-day Sun Microsoystems’ Solaris Vulnerability Allows Remote Attacks

Feb 12, 20071 min
CSO and CISOData and Information Security

Security experts are warning of a zero-day vulnerability with Sun Microsystems’ Solaris 10 and 11 operating systems.

Exploit code has been posted on the Internet, and no special tools are required to take advantage of it, according to an advisory from the SANS Institute.

The problem lies within Telnet, a networking protocol. The Telnet daemon—a process that runs in the background and waits for another Telnet client to connect—can allow a hacker to log in without a password.

SANS suggests a couple of solutions: Disable Telnet or limit the IP addresses that can connect to Telnet through the firewall.

In the past, SANS has warned that using Telnet poses a risk because data transferred between clients may not be encrypted. Telnet is also a frequent target for port scanners.

“In my opinion, no one should be running Telnet open to the Internet,” wrote Donald Smith of SANS.

Jeremy Kirk, IDG News Service