Reminder to FreeBSD admins

Just in case anyone here is not subscribed to the -announce, -security, or Bugtraq lists, I thought I should remind people that it's time to update those FreeBSD systems again.

Specifically, there's a local root hole in FreeBSD 3.x and 4.x prior to July 9, and there's a wild exploit for it as well.

If you haven't patched your system yet, do it ASAP; if you don't know how to do that, send me a pm and I'll walk you through the process.

(Note: although the wild exploit requires shell access, it can be easily modified to break root on any system allowing C, perl, or probably more or less any other CGI scripts; also if you have a standard install of sendmail the exploit could be applied through that.)

 

 

 

 

Top