• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

Multiple Xinetd Vulnerabilities

Xinetd is a recent implementation of the Internet service 'super-daemon', known as 'inetd'. It is shipped with some versions of Linux by default.

During a recent audit, a number of possible security vulnerabilities were uncovered. In addition, it was revealed that some vendor fixes for Bugtraq ID 2971 may not completely eliminate the vulnerability.

Exploitation of the conditions discovered during the audit could lead to a denial of service or remote root compromise.