Sun patches Telnet zero-day pronto
Sun Microsystems Inc. yesterday patched a critical bug that could let attackers snatch control of Solaris 10 systems by sending simple commands to the Telnet daemon.
The fix comes just three days after exploit code for the zero-day vulnerability was posted to a security Web site. "Big round of applause for Sun owning up to the mistake and fixing it quickly," said Dave Maynor, chief technology officer at Atlanta-based Errata Security, in a blog entry yesterday.
[ Read more ]