PASS TO SITE/FACILITY/COMMAND INFORMATION SYSTEM SECURITY OFFICER
{ISSO}, SPECIAL SECURITY OFFICER {SSO}, INFORMATION RESOURCE
MANAGER {IRM} AND AUTOMATED DATA PROCESSOR {ADP} COORDINATORS
SUBJECT:  NIS YPBIND VULNERABILITY {AUTOMATED SYSTEM SECURITY
INCIDENT SUPPORT TEAM {ASSIST} BULLETIN 92-65}.
1.  ASSIST HAS RECEIVED INFORMATION CONCERNING A VULNERABILITY IN
THE NIS YPBIND MODULE FOR THE HEWLETT-PACKARD (HP) HP/UX OPERATING
SYSTEM FOR SERIES 300, 700, AND 800 COMPUTERS.  HP IS AWARE OF THE
PROBLEM AND HAS PRODUCED PATCHES FOR HP/UX 8.XX VERSIONS.  THIS
PROBLEM IS FIXED IN HP/UX 9.0.
ARCHITECTURE PATCH ID              FILENAME                    
CHECKSUM
___________________________________________________________________
__
SERIES 300  PHNE_1359  /HP-UX_PATCHES/S300_400/8.X/PHNE_1359
39206214
SERIES 700  PHNE_1360  /HP-UX_PATCHES/S700/8.X/PHNE_1360    
37915299
SERIES 800  PHNE_1361  /HP-UX_PATCHES/S800/8.X/PHNE_1361    
44288299
THE CHECKSUMS LISTED ABOVE ARE FOR THE PATCH ARCHIVE FILES FROM HP.
ONCE UNPACKED, EACH SHELL ARCHIVE CONTAINS ADDITIONAL CHECKSUM
INFORMATION IN THE FILE "PATCHFILENAME.TEXT" AND INSTRUCTIONS FOR
INSTALLING THE PATCH ARE PROVIDED IN THE PHNE_XXXX.TEXT FILE.  THIS
CHECKSUM IS APPLICABLE TO THE BINARY PATCH FILE
"PATCHFILENAME.UPDT".
2.  THESE PATCHES MAY BE OBTAINED FROM HP VIA FTP (THIS IS NOT
ANONYMOUS FTP) OR THE HP SUPPORTLINE.  TO OBTAIN HP SECURITY
PATCHES, YOU MUST FIRST REGISTER WITH THE HP SUPPORTLINE.  IF YOU
HAVE ANY QUESTIONS ABOUT OBTAINING OR INSTALLING THE PATCHES,
CONTACT THE USA HP SUPPORTLINE AT 415-691-3888, OR YOUR LOCAL HP
SUPPORTLINE NUMBER.  PLEASE NOTE THAT THE TELEPHONE NUMBERS IN THIS
ADVISORY ARE APPROPRIATE FOR THE USA AND CANADA. 
3.  VULNERABILITY DESCRIPTION: A VULNERABILITY IN HP NIS ALLOWS
REMOTE NIS SERVERS UNAUTHORIZED ACCESS TO LOCAL NIS HOSTS.  AN HP
NIS CLIENT WILL ACCEPT YPSET REQUESTS FROM HOSTS OUTSIDE ITS NIS
DOMAIN.  IMPACT: ROOT ON A REMOTE HOST RUNNING ANY VENDOR'S
IMPLEMENTATION OF NIS CAN GAIN ROOT ACCESS ON ANY LOCAL HOST
RUNNING HP'S NIS YPBIND.  SOLUTION: ALL HP NIS CLIENTS AND SERVERS
RUNNING YPBIND SHOULD OBTAIN AND INSTALL THE PATCH FOR CORRECTING
THIS PROBLEM FROM HP.  INSTRUCTIONS FOR REGISTERING WITH THE HP
SUPPORTLINE, OBTAINING THE HP SECURITY PATCHES, AND FOR INSTALLING
THE PATCH PROVIDED BY HP.  
4.  POINT OF CONTACT:  ASSIST POINT OF CONTACT FOR THIS MATTER IS
MIKE HIGGINS, COMM {703} 696-1904 OR DSN 226-1904.  ASSIST CAN BE
REACHED 24 HOURS PER DAY, COMMERCIAL PAGER {800} SKY-PAGE {800-759-
7243}, PIN NUMBER 2133937.  WHEN CALLING THE PAGER SERVICE, FOLLOW
THE AUTOMATED VOICE INSTRUCTIONS AND ENTER THE CALL BACK NUMBER
AFTER THE PROMPT.  THE ASSIST DUTY OFFICER WILL CALL YOU BACK
WITHIN 30 MINUTES.  IF FASTER SERVICE IS REQUIRED, PREFIX YOUR
TELEPHONE NUMBER WITH "999", AND THE ASSIST DUTY OFFICER WILL CALL
BACK WITHIN 5 MINUTES.  ASSIST CAN BE REACHED VIA E-MAIL AT "DOD-
CERT{AT-SIGN}DDN-CONUS.DDN.MIL".
BT