[rescue] Fw: [VulnWatch] IRIX ftpd ftp_syslog issue with anonymousFTP
Sheldon T. Hall
shel at cmhcsys.com
Mon Apr 5 10:51:34 CDT 2004
Kevin forwards ...
> Date: Fri, 2 Apr 2004 11:29:56 -0800
> From: SGI Security Coordinator <agent99 at sgi.com>
> To: agent99 at sgi.com
> Cc: bugtraq at securityfocus.com, full-disclosure at lists.netsys.com,
> vulnwatch at vulnwatch.org
> Newsgroups:
> comp.sys.sgi.announce,comp.security.unix,comp.sys.sgi.admin,comp
> .security.announce
> Subject: [VulnWatch] IRIX ftpd ftp_syslog issue with anonymous
> FTP
[ snip SGI Security Advisory about ftpd ]
> OS Version Vulnerable? Patch # Other Actions
> - ---------- ----------- ------- -------------
[snip previous versions, which are all "Note 1"]
> IRIX 6.5.19 unknown Note 1
> IRIX 6.5.20 yes 5547 Notes 2 & 3
> IRIX 6.5.21 yes 5547 Notes 2 & 3
> IRIX 6.5.22 yes 5525 Notes 2 & 3
> IRIX 6.5.23 yes 5525 Notes 2 & 3
>
> NOTES
>
> 1) This version of the IRIX operating system is not actively
> supported.
> Upgrade to an actively supported IRIX operating system.
> See http://support.sgi.com/ for more information.
>
> 2) If you have not received an IRIX 6.5.X CD for IRIX 6.5,
> contact
> your SGI Support Provider or URL: http://support.sgi.com/
>
> 3) Install the required patch(es) based on your operating
> release.
[snip]
Yeah, but just try to get to the patch via SGI's website ... from here, it's
time-out city. It looks like their anonymous ftp is broken, too, so maybe I
don't want the patch just yet.
-Shel
More information about the rescue
mailing list