COMMAND

    /usr/etc/talkd

SYSTEMS AFFECTED

    IRIX (all)

PROBLEM

    The talkd(8)  program is  a support  program for  the user to user
    communications program  talk(1).    As part  of the  start of talk
    communications  between  two  users,  the  talkd  program  obtains
    network  hostname  information  from  DNS  and  then   coordinates
    notifying users of a requested talk session.

    A security vulnerability has been discovered in which manipulation
    of provided network hostname information to the talkd program  can
    be used to execute arbitrary commands with root privileges.

    For  this  particular  vulnerability,  a  local  account  is   not
    required.   Furthermore,  the   vulnerability  can  be   exploited
    remotely.

SOLUTION

    Patches that are available:

    OS Version     Vulnerable?     Patch #      Other Actions
    ----------     -----------     -------      -------------

    IRIX 3.x          yes          not avail    Note
    IRIX 4.x          yes          not avail    Note
    IRIX 5.0.x        yes          not avail    Note
    IRIX 5.1.x        yes          not avail    Note
    IRIX 5.2          yes          not avail    Note
    IRIX 5.3          yes          2132
    IRIX 6.0.x        yes          not avail    Note
    IRIX 6.1          yes          not avail    Note
    IRIX 6.2          yes          2133
    IRIX 6.3          yes          2133
    IRIX 6.4          yes          2133

    Note: upgrade operating system or nuke talk (remove talkd).