Current versions of seyon may contain malicious code | LinuxSecurit...

What Are You Looking For?

Popular Tags

Contribute
One year ago, we have received a report from SGI that a vulnerability
has been discovered in the seyon program which can lead to a root
compromise.  Any user who can execute the seyon program can exploit
this vulnerability.

However, the license of Seyon doesn't permit us to provide a fix, now
is the Seyon author responsive, nor do we have a patch, nor do we know
an exploit and can't develop a fixe therefore.

We recommend you switch to minicom instead.

The maintainer of Seyon told us the following:

     I notice from reading the SGI announcement that their problem is
     a root exploit because of a setuid Seyon.  The Seyon we ship is
     not setuid, so I doubt we'll have a serious problem.


--
Debian GNU/Linux    .    Security Managers    .    [email protected]
              [email protected]
  Christian Hudon     .      Wichert Akkerman     .     Martin Schulze
   .      .

Current versions of seyon may contain malicious code

December 13, 1999
One year ago, we have received a report from SGI that a vulnerability has been discovered in the seyon program which can lead to a root compromise

Summary


One year ago, we have received a report from SGI that a vulnerability
has been discovered in the seyon program which can lead to a root
compromise.  Any user who can execute the seyon program can exploit
this vulnerability.

However, the license of Seyon doesn't permit us to provide a fix, now
is the Seyon author responsive, nor do we have a patch, nor do we know
an exploit and can't develop a fixe therefore.

We recommend you switch to minicom instead.

The maintainer of Seyon told us the following:

     I notice from reading the SGI announcement that their problem is
     a root exploit because of a setuid Seyon.  The Seyon we ship is
     not setuid, so I doubt we'll have a serious problem.


--
Debian GNU/Linux    .    Security Managers    .    [email protected]
              [email protected]
  Christian Hudon     .      Wichert Akkerman     .     Martin Schulze
   .      .








Severity

Related News

New Variant of the IceFire Ransomware Targets Linux Enterprise Systems

Warning Issued Over Ransomware Attacks Targeting VMware ESXi Servers Globally

New Boldmove Linux Malware Used to Backdoor Fortinet Devices

Chinese Hackers Exploited Recent Fortinet Flaw as 0-Day to Drop Malware

News

Advisories

HOWTOs

Features

Verifying Linux Server Security: What Every Admin Needs to Know
What Linux, Windows & Mac OS Users Need to Know About VPNs
Complete Guide to Vulnerability Basics
How To Get Live Updates on Critical Linux Security Advisories
Best Linux Backup Solutions to Prevent Data Loss in A Ransomware Attack

About Us

Powered By

Footer Logo

We use cookies to provide and improve our services. By using our site, you consent to our Cookie Policy. 

Learn More About Our Cookie Policy