Sun fixes multiple vulnerabilities in Cobalt server

Sun Microsystems has released fixes for six vulnerabilities in its Sun Cobalt server line. The flaws' seriousness varies. Some just allow privilege escalation while other allow the running of arbitrary code on affected systems.

Sun Microsystems Inc. has issued fixes for a half-dozen vulnerabilities in its Sun Cobalt server line. These vulnerabilities affect several components, including BIND, slocate, tcpdump, apache, ProFTPD and PostgreSQL. They can cause denial of service and allow privilege escalation, the execution of arbitrary code, and unauthorized system access.

Some versions of ISC BIND can allow a local attacker to configure a name server that returns authoritative negative responses. If a victim queries the doctored name server, the reply contains a large time-to-live value. These negative responses will pile up and make the target domain inaccessible, causing a denial of service. Fixes for the vulnerability are available for Sun Cobalt RaQ XTR, Sun Cobalt RaQ 4 and Sun Cobalt Qube 3. The CVE listing is CAN-2003-0914.

A heap-based buffer overflow vulnerability in earlier versions of slocate can allow local users to escalate privileges. Fixes for the vulnerability are available for Sun Cobalt Qube 3, Sun Cobalt RaQ 4, Sun Cobalt RaQ 550 and Sun Cobalt RaQ XTR. The CVE listing is CAN-2003-0848.

Since earlier versions of tcpdump don't properly drop privileges when starting up, remote attackers can leverage the flaw to cause a denial of service. Fixes are available for Sun Cobalt Qube 3, Sun Cobalt RaQ 4, Sun Cobalt RaQ 550 and Sun Cobalt RaQ XTR. The CVE listing is CAN-2003-0194.

Several stack-based buffer overflows within earlier versions of apache httpd could permit local attackers to craft configuration files that can crash the system (causing denial of service), execute arbitrary code and escalate privileges. Fixes for the vulnerability are available for Sun Cobalt Qube 3, Sun Cobalt RaQ 4, Sun Cobalt RaQ 550 and Sun Cobalt RaQ XTR. The CVE listing is CAN-2003-0542.

Because older versions of ProFTPD don't correctly translate ASCII files during transfer, remote attackers may be able to cause a buffer overflow that could result in the execution of arbitrary code and unauthorized system access. Fixes for the vulnerability are available for Sun Cobalt Qube 3, Sun Cobalt RaQ 550 and Sun Cobalt RaQ XTR. The CVE listing is CAN-2003-0831.

There is a buffer overflow in some versions of PostgreSQL that may allow local attackers to execute arbitrary code. Fixes for the vulnerability are available for Sun Cobalt RaQ 550. The CVE listing is CAN-2003-0901.

Sun is ending the Cobalt server product line, but the products are still used for some Internet services by ISPs and hosting companies. Sun has released some of the server code as BSD- and GPL-style open source. Sun plans to maintain its knowledge base and support forum for Cobalt RaQ 550 until 2007.

Dig deeper on Security Industry Market Trends, Predictions and Forecasts

Pro+

Features

Enjoy the benefits of Pro+ membership, learn more and join.

0 comments

Oldest 

Forgot Password?

No problem! Submit your e-mail address below. We'll send you an email containing your password.

Your password has been sent to:

SearchCloudSecurity

SearchNetworking

SearchCIO

SearchConsumerization

SearchEnterpriseDesktop

SearchCloudComputing

ComputerWeekly

Close