HighCheck or Attack Name: linkerbug
Many telnet daemons offer the functionality of transferring environment variables from one system to the other. On systems that run these daemons and also provide support for shared object libraries, it could be possible to influence the login program called by the telnet daemon. Depending on the system's configuration, either a local or remote attacker could gain root on the affected system.
Determine if your telnet daemon uses the ENVIRON or NEW-ENVIRON options. If your daemon uses these options, you may be vulnerable. Immediately disable the telnet daemon or apply the wrapper provided by CERT until you can obtain a patch from your vendor.
CERT Advisory CA-95.14, Telnetd Environment Vulnerability, http://www.cert.org/advisories/CA-95.14.Telnetd_Environment_Vulnerability.html
Silicon Graphics Inc. Security Advisory 19951101-01-P1010o1020, Telnetd vulnerability reported by MIT, ftp://sgigate.sgi.com/security/19951101-01-P1010o1020
