From owner-freebsd-security Tue May 4 14:22:51 1999 Delivered-To: freebsd-security@freebsd.org Received: from ifi.uio.no (ifi.uio.no [129.240.64.2]) by hub.freebsd.org (Postfix) with ESMTP id 92F2614C8E for ; Tue, 4 May 1999 14:22:48 -0700 (PDT) (envelope-from des@ifi.uio.no) Received: from hrotti.ifi.uio.no (2602@hrotti.ifi.uio.no [129.240.64.15]) by ifi.uio.no (8.8.8/8.8.7/ifi0.2) with ESMTP id XAA07687 for ; Tue, 4 May 1999 23:22:47 +0200 (MET DST) Received: (from des@localhost) by hrotti.ifi.uio.no ; Tue, 4 May 1999 23:22:46 +0200 (MET DST) To: security@freebsd.org Subject: [Jamie Rishaw ] FreeBSD 3.1 remote reboot exploit From: Dag-Erling Smorgrav Date: 04 May 1999 23:22:44 +0200 Message-ID: Lines: 35 X-Mailer: Gnus v5.5/Emacs 19.34 Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org ------- Start of forwarded message ------- Message-ID: <19990501031840.A24252@dilbert.exodus.net> Date: Sat, 1 May 1999 03:18:40 -0500 Reply-To: jamie@exodus.net From: Jamie Rishaw Subject: FreeBSD 3.1 remote reboot exploit To: BUGTRAQ@NETSPACE.ORG Hi, Sorry to be so vague, but I wanted to let everyone know, It's been demonstrated to me by two people who will not reveal "how" that there is a remote bug exploit, almost certainly over IP, that will cause FreeBSD-3.1 systems to reboot with no warnings. The second box this was demonstrated on today had no open services besides ircd, and was remote rebooted. (The first box had open services such as smtp, ssh, pop, http, but did /not/ run ircd, eliminating ircd as the culprit). If anyone can shed some light on this (really bad) issue, it'd be greatly appreciated, especially since I am(was) in the process of upgrading all of my boxes to 3.1. (3.1-REL). Regards, -jamie -- jamie rishaw (efnet:gavroche) -- Exodus Communications, Inc. >Sr. Network Engr, Chicago, SoCal Data Centers In an interesting move Exodus Communications annouced today that they have replaced all of their backbone engineers with furby's ------- End of forwarded message ------- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message