To print: Click here or Select File and then Print from your browser's menu

This story was printed from silicon.com, located at http://www.silicon.com/

Story URL: http://software.silicon.com/security/0,39024655,11024188,00.htm

FBI warning over Unix loophole
The Federal Bureau of Investigation today warned Unix users of a potential security loophole that could allow malicious hackers to take control of their computer systems.

By Chris Holbrook

Published: Wednesday 02 May 2001

The problem arises through a vulnerability in a program called 'lpd/LPRng' that controls printer requests across a Unix network, coupled with Sun Microsystems' remote procedure call software which allows networks to communicate with each other.

The defect, known as format string vulnerability, may allow unauthorised remote users to execute arbitrary code on a machine, or start a denial of service attack on the vulnerable system.

The FBI's cybercrime unit, the National Infrastructure Protection Centre (NIPC), raised the alarm after they noticed a significant increase in attempts to take advantage of the flaw through the popular platform.

According to the NIPC, the solution is to upgrade to the non-vulnerable version of LPRng, disallow access to printer service ports 515/tcp or employ packet-filtering technology such as a firewall.

For more details on this security hole, visit http://www.kb.cert.org/vuls/id/382365