“An intrusion detection toolmaker has discovered a serious FTP
vulnerability in several brands of Unix software that lets hackers
gain unauthorized root access to system files and controls.”
“Netect says the bug, dubbed Palmetto, allows hackers to break
into corporate networks by taking advantage of buffer overflows in
various vendors’ FTP servers. The specific programs affected are
RedHat Linux, SCO UnixWare, Walnut Creek Slackware and Caldera
OpenLinux.”
“CERT… released its own advisory about the Palmetto bug.”
Complete
story. (Free site registration required.)