Worm Exploiting Solaris Telnetd Vulnerability

MichaelSmith writes "Several news sites are reporting that a worm is starting to exploit the Solaris Telnet 0-day vulnerability. By adding simple text to the Telnet command, the system will skip asking for a username and password. If the systems are installed out of the box, they automatically come Telnet-enabled. 'The SANS Internet Storm Center, which monitors Internet threats, has noticed some increase in activity on the network port used by Solaris' telnet feature, according to an ISC blog posted on Tuesday. "One hopes that there aren't that many publicly reachable Solaris systems running telnet," ISC staffer Joel Esler wrote.'"

Sun don't shine

[Anonymous Coward]

I hate when I have worms where the Sun don't shine.

Oh no

[wumpus188]

These 4 users running telnet on solaris are gonna be pissed...

Re:It's been a long day...

[Cheapy]

Sysadmins have been search this entire time to find a Solaris box to fix.

They are still searching.

telwhat?

[glwtta]

Tell who?

What year is it?

Re:Other Telnet vulnerabilities

[geoffspear]

I've yet to come across a printer that was running Solaris, but I'll certainly keep that in mind if I ever do.

Re:Yep.

[Venik]

I think the real question is: should Solaris telnetd have such an immense security hole?

Re:*Cough* Microsoft *Cough*

[fm6]

Since when was Microsoft known for usability?

Re:Yep.

[DieNadel]

No, they do not!

Stop repeating that!

They don't use telnet, and that plaintext you see when sniffing their network is your natural ability to crack encryption.

How many times do I have to tell you that you're special?!

Now, back to the task I've given you. The NSA won't be lending me your brain again if you spend all my alloted time on /.