This is scary stuff for UNIX based OSes:
Full Article: http://www.theregister.co.uk/content/55/24447.html
Hope the boxes are patched in time b4 the onslaught begins...
A vulnerability involving an obscure UDP protocol might permits crackers to obtain remote control of Unix workstations, security experts have warned.
Security firm ProCheckUp has issued an advisory warning that anonymous XDMCP connections allow remote attackers to obtain a remote console identical to a local X-Windows session, using a command enabled by default on most Unix boxes.
....
This flaw appears to affect all versions of Sun Solaris and versions of Linux Mandrake up to 8.1, though Red Hat Linux is believed to be immune to that attack. The jury is out on IBM's AIX and HP/UX.
Full Article: http://www.theregister.co.uk/content/55/24447.html
Hope the boxes are patched in time b4 the onslaught begins...