COMMAND

    telnet(1)

SYSTEMS AFFECTED

    Sequent DYNIX/ptx 2.x

PROBLEM

    There seem to be a  security problem with the telnet  command that
    will allow any user on the system to overwrite any file. For  this
    to  work  telnet  must  be  suid  root.  Using  the  command  will
    overwrite  any  file  in  any  filesystem  with a zero-length root
    owned file. To exploit the  bug try:  /usr/bin/telnet -n  filename
    hostname

SOLUTION

    Remote the suid bit from telnet.