COMMAND

    in.telnetsnoopd

SYSTEMS AFFECTED

    Linux Slackware 2.0.27 (possibly others)

PROBLEM

    The standard in.telnetd was patched against the 'libroot'  exploit
    that made use  of the "LD_PRELOAD"  command in telnet.  The  patch
    blocked environment variables longer than xxxx from being   passed
    as an argument as  "libroot" was. Unfortunately, it  seems someone
    overlooked  telnetsnoop,  as  this  is  still  exploitable.   This
    vulnerability was reported by Jeff Sorensen <jeff@NGBERT.ORG>

SOLUTION

    Edit  your  inetd.conf  to  reenable  standard telnet, rather than
    snoop telnet or just compile  the telnetd that comes with  NetKit,
    but  prior  to  compile,  edit /usr/include/paths.h _PATH_LOGIN to
    point  to  /usr/sbin/ttysnoops.   However,  you  can  download the
    "patch" for  in.telnetsnoopd from sunsite.  You will need the  old
    source for telnetsnoopd too..