[perl] Le toco el turno a HP
Pachin
pachin@trujillovirtual.com
Tue, 9 Feb 1999 08:44:59 -0500
This is a multi-part message in MIME format.
------=_NextPart_000_000A_01BE5408.7A2E9FA0
Content-Type: text/plain;
charset="ISO-8859-2"
Content-Transfer-Encoding: quoted-printable
Un bug acaba de ser anunciado por HP el dia de ayer, la falla esta =
presente en las computadoras HP 9000 series 700/800 y compromete al =
componente rpc.pcnfsd (procedimiento remoto que es usado por los =
clientes NFS este es un servicio que provee autentificacion de nombres =
de usuario y passwords en sistemas que tienen un cliente NFS instalado) =
el cual presenta un error al acceder al directorio spool.=20
Mediante la correcta utilizacion de este bug es posible escribir data en =
el directorio spool de la impresora predeterminada y podr=EDa ser usado =
para conseguir acceso como administrador a la maquina comprometida.
Al final del mail transcribo literalmente el boletin de seguridad =
emitido por HP a sus usuarios a nivel mundial. Un parche para corregir =
el problema ya se encuentra disponible en: ftp:us-ffs.external.hp.com
Saludos.
pachin
=20
Puede verificar esta firma digital en =
http://www.visual-labs.com/pachin/pachinpgp.txt
-----BEGIN PGP PUBLIC KEY BLOCK-----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=3D8fk2
-----END PGP PUBLIC KEY BLOCK-----
>----- Forwarded message from HP Electronic Support Center -----
>
>>From cam@europe-support.external.hp.com Mon Feb 8 19:29:57 1999
>
>
> HP Support Information Digests
>
>=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=
=3D=3D=3D=3D=3D
>o HP Electronic Support Center World Wide Web Service
> ---------------------------------------------------
>
> If you subscribed through the HP Electronic Support Center and would
> like to be REMOVED from this mailing list, access the
> HP Electronic Support Center on the World Wide Web at:
>
> http://europe-support.external.hp.com
>
> Login using your HP Electronic Support Center User ID and Password.
> Then select Support Information Digests. You may then unsubscribe =
from the
> appropriate digest.
>=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=
=3D=3D=3D=3D=3D
>
>=20
>Digest Name: Daily Security Bulletins Digest
> Created: Mon Feb 8 15:00:05 MET 1999
>
>Table of Contents:
>
>Document ID Title
>--------------- -----------
>HPSBUX9902-091 Security Vulnerability with rpc.pcnfsd
>
>The documents are listed below.
>------------------------------------------------------------------------=
-------
>
>=20
>Document ID: HPSBUX9902-091
>Date Loaded: 19990207
> Title: Security Vulnerability with rpc.pcnfsd
>
>------------------------------------------------------------------------=
-
> HEWLETT-PACKARD COMPANY SECURITY BULLETIN: #00091, 08 Febraury 1999
>------------------------------------------------------------------------=
-
>
>The information in the following Security Bulletin should be acted upon
>as soon as possible. Hewlett-Packard Company will not be liable for =
any
>consequences to any customer resulting from customer's failure to fully
>implement instructions in this Security Bulletin as soon as possible.
>
>------------------------------------------------------------------------=
-
>PROBLEM: rpc.pcnfsd has an error in its use of the spool directory
>
>PLATFORM: HP 9000 series 700/800.
>
>DAMAGE: Remote and local users can compromise root access.
>
>SOLUTION: Install _all_ applicable patches listed below. Reboot =
required.
>
>AVAILABILITY: All patches are available now.
>
>------------------------------------------------------------------------=
-
>I.
> A. Background
> rpc.pcnfsd is a remote procedure call used by NFS clients which =
is
> a service providing username and password authentication for =
system
> which have NFS client software installed.
> If exploited, this defect allows the main printer spool directory
> used by rpc.pcnfsd to be made world writeable.
>
> B. Fixing the problem
> This involves installing a series of patches which require
> rebooting the system. The main patch requires a libc patch,
> which in turn requires a kernal patch.
>
> For HP-UX 10.01: PHNE_17248
> For HP-UX 10.10: PHNE_17248
> For HP-UX 10.20: PHNE_17098
> For HP-UX 11.00: PHNE_16470
>
> The following sets of patches will need to be installed to =
resolve
> all the documented patch dependencies. The dependencies will be
> satisfied by the patches listed, or any patch that supersedes =
them:
>
> s700 10.01: PHNE_17248, PHKL_7059, PHCO_14253;
> s800 10.01: PHNE_17248, PHKL_7060, PHCO_14253;
> s700 10.10: PHNE_17248, PHKL_8292, PHCO_14254;
> s800 10.10: PHNE_17248, PHKL_8293, PHCO_14254;
> s700 10.20: PHNE_17098, PHKL_9155, PHKL_16750,
> PHCO_13777, PHCO_12922, PHCO_17389,
> PHNE_16237, PHKL_16959, PHKL_17012,
> PHKL_17253, PHKL_12007;
> s800 10.20: PHNE_17098, PHKL_9156, PHKL_16751,
> PHCO_13777, PHCO_12922, PHCO_17389,
> PHNE_17097, PHKL_16957, PHKL_17013,
> PHKL_17254, PHKL_12008;
> s700 11.00: PHNE_16470, PHCO_16629, PHKL_15689,
> PHCO_14625;
> s800 11.00: PHNE_16470, PHCO_16629, PHKL_15689,
> PHCO_14625.
>
> NOTE: This problem is fixed fully in HP-UX release 11.01.
>
> C. To subscribe to automatically receive future NEW HP Security
> Bulletins from the HP Electronic Support Center via electronic
> mail, do the following:
>
> Use your browser to get to the HP Electronic Support Center page
> at:
>
> http://us-support.external.hp.com
> (for US, Canada, Asia-Pacific, & Latin-America)
> http://europe-support.external.hp.com (for Europe)
>
> Login with your user ID and password (or register for one).
> Remember to save the User ID assigned to you, and your password.
> Once you are in the Main Menu:
> To -subscribe- to future HP Security Bulletins,
> click on "Support Information Digests".
> To -review- bulletins already released from the main Menu,
> click on the "Search Technical Knowledge Database."
>
> Near the bottom of the next page, click on "Browse the HP
> Security Bulletin Archive".
> Once in the archive there is another link to our current Security
> Patch Matrix. Updated daily, this matrix categorizes security
> patches by platform/OS release, and by bulletin topic.
>
> The security patch matrix is also available via anonymous ftp:
>
> us-ffs.external.hp.com
> ~ftp/export/patches/hp-ux_patch_matrix
>
> D. To report new security vulnerabilities, send email to
>
> security-alert@hp.com
>
> Please encrypt any exploit information using the security-alert
> PGP key, available from your local key server, or by sending a
> message with a -subject- (not body) of 'get key' (no quotes) to
> security-alert@hp.com.
>
> Permission is granted for copying and circulating this Bulletin to
> Hewlett-Packard (HP) customers (or the Internet community) for the
> purpose of alerting them to problems, if and only if, the Bulletin
> is not edited or changed in any way, is attributed to HP, and
> provided such reproduction and/or distribution is performed for
> non-commercial purposes.
>
> Any other use of this information is prohibited. HP is not liable
> for any misuse of this information by any third party.
>________________________________________________________________________=
>-----End of Document ID: =
HPSBUX9902-091--------------------------------------
>
>----- End of forwarded message from HP Electronic Support Center -----
------=_NextPart_000_000A_01BE5408.7A2E9FA0
Content-Type: text/html;
charset="ISO-8859-2"
Content-Transfer-Encoding: quoted-printable
<!DOCTYPE HTML PUBLIC "-//W3C//DTD W3 HTML//EN">
Un bug acaba de ser anunciado por HP el =
dia de ayer,=20
la falla esta presente en las computadoras HP 9000 =
series=20
700/800 y compromete al componente rpc.pcnfsd (procedimiento remoto que =
es usado=20
por los clientes NFS este es un servicio que provee autentificacion de =
nombres=20
de usuario y passwords en sistemas que tienen un cliente NFS instalado) =
el cual=20
presenta un error al acceder al directorio spool.
Mediante la correcta utilizacion de este bug es =
posible=20
escribir data en el directorio spool de la impresora predeterminada y=20
podría ser usado para conseguir acceso como =
administrador a la maquina comprometida.
Al final del mail transcribo =
literalmente el=20
boletin de seguridad emitido por HP a sus usuarios a nivel mundial. Un =
parche=20
para corregir el problema ya se encuentra disponible en: ftp:us-ffs.external.hp.com
Saludos.
pachin
Puede verificar esta firma digital =
en http://www.visua=
l-labs.com/pachin/pachinpgp.txt
-----BEGIN=20
PGP PUBLIC KEY=20
BLOCK-----
mQGiBDaeJg4RBADMfd1VNVOrjEoFX7ArN/virkdnq97El8QhsZ1OvzqX0eJ=
39vCj
AfBAOWdEu2xDc1Yx/MSeaqnR4vX5qoJdD1CInH9XC1i6oIrwqbSFqhBb6EGwKtME=
/vEbt0ScciIArawnT3wen7h03Gqv+PWBxj/fUcgKXsEUaICTJJIialkr8QCg/0LJ
N=
xqnIlSbKtiviubrnOiXbbMD/RqXnEDODFm9UlfRsmA9Ljazyfv8u08AcEUp2VWU
YppBML=
o1K/QMNGnd03TxNjUDUSUVtzXDyN/y5jxjQBdaG+6TpqwH8tqN8C2kGMFH
s4GRo3DJ/k4=
FOVEZSqg3QW1pmh+qnhqO6ne8Ah0kk2Txgx+D/bRyBLurxyQuwIzT
7X1qBACJ2L51MAQ1=
8icLTKiasxo1IjMVXmlPRmIu3OiOWC7G2XTl8ZrcHRzWvW35
qw1UYoCZxyPqnEUGHW5SN=
mFwxguSdtqL/Vfki/m9vVRXeoCMvG7RmEZ5C6J32dV8
RMQSicgtwh3lVQ5+ayke+3+wEs=
BbXX5RW2XyP+7Rc6YYyhd/NrQjcGFjaGluIDxw
YWNoaW5AdHJ1amlsbG92aXJ0dWFsLmN=
vbT6JAEsEEBECAAsFAjaeJg4ECwMCAQAK
CRAxL6TqHqqQjVrkAJ48pW7ka4yOcOGnu4Oe=
OlTd1YZXWgCePZTHagh9WdqldjtK
5uUNUuNpdS65Ag0ENp4mDxAIAPZCV7cIfwgXcqK61=
qlC8wXo+VMROU+28W65Szgg
2gGnVqMU6Y9AVfPQB8bLQ6mUrfdMZIZJ+AyDvWXpF9Sh01=
D49Vlf3HZSTz09jdvO
meFXklnN/biudE/F/Ha8g8VHMGHOfMlm/xX5u/2RXscBqtNbno2=
gpXI61Brwv0YA
WCvl9Ij9WE5J280gtJ3kkQc2azNsOA1FHQ98iLMcfFstjvbzySPAQ/Cl=
WxiNjrtV
jLhdONM0/XwXV0OjHRhs3jMhLLUq/zzhsSlAGBGNfISnCnLWhsQDGcgHKXrKl=
QzZ
lp+r0ApQmwJG0wg9ZqRdQZ+cfL2JSyIZJrqrol7DVekyCzsAAgIH/2psz/lubQTMmbPS0GuuRxQj5Br6BuGMlFWWkfkF7TX8iXu04saWuTuIhcXVP65QSeAYIvcuRPjv
+nn=
p/VkA894wLeOchrgdvPZzeLsexdLnDST92k2nXBUPC35gihMVPLHGcwV0RMpu
A2VGAoCw=
LZriM0EYxh2cRXxQCQrVF73jVFoaJ8eXPbnTvAfcwyFOCdyZP9uu+k3+
kVM82kY+YCjIy=
VYpsD4r0bRA6Xw05BGgUyhmyFMX3MgsrMrIu+h4qeE0Z/U/n+Pk
TdrpFZkd9cNp+FtOER=
xBw0WZpVJqhQW9fGPbvx8/Yjo1LM7w9M40Af4KXnl0T730
IiUImjT4SGWJAEYEGBECAAY=
FAjaeJg8ACgkQMS+k6h6qkI32nQCdF90BI9VKZ0Pg
Rdo+G5us2JkJEuAAnj5mQKESjjMC=
PJtz3baM+Aoig5Ba
=3D8fk2
-----END=20
PGP PUBLIC KEY BLOCK-----
>----- Forwarded message from HP Electronic Support Center=20
-----
>
>>From
cam@europe-support.ext=
ernal.hp.com =20
Mon Feb 8 19:29:57=20
1999
>
>
> &nb=
sp; &nbs=
p; =20
HP Support Information=20
Digests
>
>=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D
>o =20
HP Electronic Support Center World Wide Web Service
> =20
---------------------------------------------------
>
> =
=20
If you subscribed through the HP Electronic Support Center and=20
would
> like to be REMOVED from this mailing list, =
access=20
the
> HP Electronic Support Center on the World Wide =
Web=20
at:
>
> http://europe-support.exte=
rnal.hp.com
>
> =20
Login using your HP Electronic Support Center User ID and=20
Password.
> Then select Support Information =
Digests. You=20
may then unsubscribe from the
> appropriate=20
digest.
>=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=
=3D=3D=3D=3D=3D=3D=3D=3D=3D
>
>=20
>Digest Name: Daily Security Bulletins=20
Digest
> Created: Mon Feb 8 15:00:05 =
MET=20
1999
>
>Table of Contents:
>
>Document=20
ID Title
>--------------- =20
-----------
>HPSBUX9902-091 Security Vulnerability =
with=20
rpc.pcnfsd
>
>The documents are listed=20
below.
>-----------------------------------------------------------=
--------------------
>
>=20
>Document ID: HPSBUX9902-091
>Date Loaded: =20
19990207
> Title: Security=20
Vulnerability with=20
rpc.pcnfsd
>
>-----------------------------------------------=
--------------------------
> =20
HEWLETT-PACKARD COMPANY SECURITY BULLETIN: #00091, 08 Febraury=20
1999
>-------------------------------------------------------------=
------------
>
>The=20
information in the following Security Bulletin should be acted =
upon
>as=20
soon as possible. Hewlett-Packard Company will not be liable for=20
any
>consequences to any customer resulting from customer's =
failure to=20
fully
>implement instructions in this Security Bulletin as soon as =
possible.
>
>------------------------------------------------=
-------------------------
>PROBLEM: =20
rpc.pcnfsd has an error in its use of the spool=20
directory
>
>PLATFORM: HP 9000 series=20
700/800.
>
>DAMAGE: Remote and local users can=20
compromise root access.
>
>SOLUTION: Install _all_ =
applicable=20
patches listed below. Reboot =
required.
>
>AVAILABILITY: =20
All patches are available=20
now.
>
>-----------------------------------------------------=
--------------------
>I.
> =20
A. Background
> rpc.pcnfsd is a =
remote=20
procedure call used by NFS clients which=20
is
> a service providing username =
and=20
password authentication for system
> =
which=20
have NFS client software =
installed.
> If=20
exploited, this defect allows the main printer spool=20
directory
> used by rpc.pcnfsd to be =
made=20
world writeable.
>
> B. Fixing the=20
problem
> This involves installing a =
series=20
of patches which require
> rebooting =
the=20
system. The main patch requires a libc=20
patch,
> which in turn requires a =
kernal=20
patch.
>
> For =
HP-UX=20
10.01: &=
nbsp; =20
PHNE_17248
> For HP-UX=20
10.10: &=
nbsp; =20
PHNE_17248
> For HP-UX=20
10.20: &=
nbsp; =20
PHNE_17098
> For HP-UX=20
11.00: &=
nbsp; =20
PHNE_16470
>
> The following =
sets of=20
patches will need to be installed to=20
resolve
> all the documented patch=20
dependencies. The dependencies will=20
be
> satisfied by the patches =
listed, or any=20
patch that supersedes=20
them:
>
> s700=20
10.01: PHNE_17248, PHKL_7059, =20
PHCO_14253;
> s800=20
10.01: PHNE_17248, PHKL_7060, =20
PHCO_14253;
> s700=20
10.10: PHNE_17248, PHKL_8292, =20
PHCO_14254;
> s800=20
10.10: PHNE_17248, PHKL_8293, =20
PHCO_14254;
> s700=20
10.20: PHNE_17098, PHKL_9155, =20
PHKL_16750,
> =
&=
nbsp; =20
PHCO_13777, PHCO_12922,=20
PHCO_17389,
> =
&=
nbsp; =20
PHNE_16237, PHKL_16959,=20
PHKL_17012,
> =
&=
nbsp; =20
PHKL_17253, =
PHKL_12007;
> s800=20
10.20: PHNE_17098, PHKL_9156, =20
PHKL_16751,
> =
&=
nbsp; =20
PHCO_13777, PHCO_12922,=20
PHCO_17389,
> =
&=
nbsp; =20
PHNE_17097, PHKL_16957,=20
PHKL_17013,
> =
&=
nbsp; =20
PHKL_17254, =
PHKL_12008;
> s700=20
11.00: PHNE_16470, PHCO_16629,=20
PHKL_15689,
> =
&=
nbsp; =20
PHCO_14625;
> s800=20
11.00: PHNE_16470, PHCO_16629,=20
PHKL_15689,
> =
&=
nbsp; =20
PHCO_14625.
>
> NOTE: This =
problem is=20
fixed fully in HP-UX release 11.01.
>
> C. To =
subscribe=20
to automatically receive future NEW HP=20
Security
> Bulletins from the HP =
Electronic=20
Support Center via electronic
> =
mail, do the=20
following:
>
> Use your =
browser to get=20
to the HP Electronic Support Center =
page
> =20
at:
>
> http://us-support.external.hp.=
com
> &nbs=
p; =20
(for US, Canada, Asia-Pacific, &=20
Latin-America)
> http://europe-support.exte=
rnal.hp.com =20
(for Europe)
>
> Login with =
your user=20
ID and password (or register for =
one).
> =20
Remember to save the User ID assigned to you, and your=20
password.
> Once you are in the Main =
Menu:
> To -subscribe- to future HP =
Security=20
Bulletins,
> click on=20
"Support Information =
Digests".
> =20
To -review- bulletins already released from the main=20
Menu,
> click on the=20
"Search Technical Knowledge=20
Database."
>
> Near the =
bottom of=20
the next page, click on "Browse the=20
HP
> Security Bulletin=20
Archive".
> Once in the archive =
there=20
is another link to our current =
Security
> =20
Patch Matrix. Updated daily, this matrix categorizes=20
security
> patches by platform/OS =
release,=20
and by bulletin topic.
>
> The =
security patch matrix is also available via anonymous=20
ftp:
>
> =20
us-ffs.external.hp.com
> =20
~ftp/export/patches/hp-ux_patch_matrix
>
> D. To =
report=20
new security vulnerabilities, send email=20
to
>
> security-alert@hp.com
>> =20
Please encrypt any exploit information using the=20
security-alert
> PGP key, available =
from=20
your local key server, or by sending =
a
> =20
message with a -subject- (not body) of 'get key' (no quotes)=20
to
> security-alert@hp.com.
><=
BR>> =20
Permission is granted for copying and circulating this Bulletin=20
to
> Hewlett-Packard (HP) customers (or =
the=20
Internet community) for the
> purpose of =
alerting=20
them to problems, if and only if, the =
Bulletin
> =20
is not edited or changed in any way, is attributed to HP,=20
and
> provided such reproduction and/or=20
distribution is performed for
> =
non-commercial=20
purposes.
>
> Any other use of this=20
information is prohibited. HP is not =
liable
> for=20
any misuse of this information by any third=20
party.
>___________________________________________________________=
_____________
>-----End=20
of Document ID: =20
HPSBUX9902-091--------------------------------------
>
>-----=
End of=20
forwarded message from HP Electronic Support Center =
-----