FOR OFFICIAL DOE USE ONLY--DO NOT DISTRIBUTE OUTSIDE OF DOE
_______________________________________________________________________

             THE COMPUTER INCIDENT ADVISORY CAPABILITY

                               CIAC

                    INFORMATION    BULLETIN
_______________________________________________________________________

Notice of Availability of Patch for SmarTerm 240 

February 13, 1990, 1200 PST                                   Number A-18
 
SmarTerm 240 is a PC terminal emulation package used to connect PCs to host
computers.  CIAC has been advised of an exploitable feature in this package that
can result in execution of unauthorized programs on the host computers accessed
via this package.

Persoft, Inc., the manufacturer of SmarTerm 240, has provided a workaround
(validated by CIAC) that will disable the exploitable feature.  For versions
3.0A or 3.0B, the procedure for disabling this feature is as follows:

  1A.     If you have SmarTerm version 3.0A, you will need to get
an updated version of the FILEMOD2 program.  This program is included
with SmarTerm 240 on the utilities disk which comes with SmarTerm 240.
The updated version is available from CIAC or from Persoft, Inc., phone
(608) 273-6000.

  1B.     If you have SmarTerm 240 version 3.0B, you already have
the version of FILEMOD2.EXE that you need.  It is on the utility disk
which comes with SmarTerm 240.

  2.      Load the utility disk containing FILEMOD2.EXE (From the
original SmarTerm 240 distribution disks) into drive A:.  Change to the
A: prompt by typing

  A:  <return>

  3.  Enter the following command from the DOS prompt.

  filemod2 (path)\st240.exe 0 1 x7503e9a6fe 0 1 xe9b3009090 1473   <return>

  where (path) is the drive designator and the directory containing 
st240.exe

For example, you can enter:

  filemod2 C:\st240\st240.exe 0 1 x7503e9a6fe 0 1 xe9b3009090 1473   <return>

where C is the hard drive and st240 is the directory containing SmarTerm.
  
The procedure is now complete.  If you are using a version of SmartTerm 240
other than  versions mentioned above, please contact CIAC for assistance in
closing this vulnerability:

  David S. Brown
  (415) 423-9878 or (FTS) 543-9878
  FAX: (415) 423-0913 or (415) 294-5054

CIAC's business hours phone number is (415) 422-8193 or (FTS) 532-8193.   You
may also send e-mail to:

  ciac@tiger.llnl.gov
 
Neither the United States Government nor the University of California nor any of
their employees, makes any warranty,  expressed or implied, or assumes any legal
liability or responsibility for the accuracy, completeness, or usefulness of any
information, product, or process disclosed, or represents that its use would not
infringe privately owned rights.  Reference herein to any specific commercial
products, process, or service by trade name, trademark manufacturer, or
otherwise, does not necessarily constitute or imply its endorsement, recom-
mendation, or favoring by the United States Government or the University of
California.  The views and opinions of authors expressed herein do not
necessarily state or reflect those of the United States Government nor the
University of California, and shall not be used for advertising or product
endorsement purposes.