ID CVE-2003-0746 Type cve Reporter cve@mitre.org Modified 2008-09-05T20:35:00
Description
Various Distributed Computing Environment (DCE) implementations, including HP OpenView, allow remote attackers to cause a denial of service (process hang or termination) via certain malformed inputs, as triggered by attempted exploits against the vulnerabilities CVE-2003-0352 or CVE-2003-0605, such as the Blaster/MSblast/LovSAN worm.
{"id": "CVE-2003-0746", "bulletinFamily": "NVD", "title": "CVE-2003-0746", "description": "Various Distributed Computing Environment (DCE) implementations, including HP OpenView, allow remote attackers to cause a denial of service (process hang or termination) via certain malformed inputs, as triggered by attempted exploits against the vulnerabilities CVE-2003-0352 or CVE-2003-0605, such as the Blaster/MSblast/LovSAN worm.", "published": "2003-10-20T04:00:00", "modified": "2008-09-05T20:35:00", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2003-0746", "reporter": "cve@mitre.org", "references": ["http://www.kb.cert.org/vuls/id/377804", "http://archives.neohapsis.com/archives/hp/2003-q3/0042.html", "ftp://patches.sgi.com/support/free/security/advisories/20030902-01-P", "http://www.secunia.com/advisories/9482"], "cvelist": ["CVE-2003-0746"], "type": "cve", "lastseen": "2021-02-02T05:22:09", "edition": 4, "viewCount": 1, "enchantments": {"dependencies": {"references": [{"type": "osvdb", "idList": ["OSVDB:2385"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:DOC:5166"]}], "modified": "2021-02-02T05:22:09", "rev": 2}, "score": {"value": 6.7, "vector": "NONE", "modified": "2021-02-02T05:22:09", "rev": 2}, "vulnersScore": 6.7}, "cpe": ["cpe:/a:hp:openview:*"], "affectedSoftware": [{"cpeName": "hp:openview", "name": "hp openview", "operator": "eq", "version": "*"}], "cvss2": {"cvssV2": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": false}, "cvss3": {}, "cpe23": ["cpe:2.3:a:hp:openview:*:*:*:*:*:*:*:*"], "cwe": ["NVD-CWE-Other"], "scheme": null, "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"cpe_match": [{"cpe23Uri": "cpe:2.3:a:hp:openview:*:*:*:*:*:*:*:*", "vulnerable": true}], "operator": "OR"}]}, "extraReferences": [{"name": "9482", "refsource": "SECUNIA", "tags": ["Vendor Advisory"], "url": "http://www.secunia.com/advisories/9482"}, {"name": "20030902-01-P", "refsource": "SGI", "tags": [], "url": "ftp://patches.sgi.com/support/free/security/advisories/20030902-01-P"}, {"name": "VU#377804", "refsource": "CERT-VN", "tags": ["Third Party Advisory", "US Government Resource"], "url": "http://www.kb.cert.org/vuls/id/377804"}, {"name": "HPSBUX0308-274", "refsource": "HP", "tags": [], "url": "http://archives.neohapsis.com/archives/hp/2003-q3/0042.html"}]}
{"osvdb": [{"lastseen": "2017-04-28T13:19:57", "bulletinFamily": "software", "cvelist": ["CVE-2003-0746"], "edition": 1, "description": "## Vulnerability Description\nDistributed Computing Environment (DCE) contains a flaw that may allow a remote denial of service. The issue is triggered when invalid traffic is received by the DCE daemon occurs, and will result in loss of availability for the service.\n## Technical Description\nSOFTWARE:\nEntegrity DCE/DFS for Linux 1.x\nEntegrity DCE/DFS for Tru64 4.x\nEntegrity PC-DCE 4.x\nEntegrity PC-DCE 5.x\nIBM DCE for AIX 3.x\nIBM DCE for Solaris 3.x\nIBM DCE for Windows 3.x\nOpenGroup DCE 1.x\n \nHP Official Patches:\nHP-UX B.11.00\nHP-UX B.11.11\n OVOPC-CLT.OVOPC-SOL-CLT,fr=A.07.10: PHSS_29645\n\nHP-UX B.11.00\n OVOPC-CLT.OVOPC-SOL-CLT,fr=A.06.00: PHSS_29646\n\nHP-UX B.11.00\nHP-UX B.11.11\n OVOPC-CLT.OVOPC-LIN-CLT,fr=A.07.10: PHSS_29626\n\nHP-UX B.11.00\n OVOPC-CLT-ENG.OVOPC-LIN-CLT,fr=A.06.00: PHSS_29644\n\nSGI Official Patches:\n\nSGI Patch patch5313\nSGI Patch patch5314\n## Solution Description\nCurrently, there are no known workarounds or upgrades to correct this issue. However, HP and SGI have released patches to address this vulnerability. At this time, there is no patch from Cray.\n## Short Description\nDistributed Computing Environment (DCE) contains a flaw that may allow a remote denial of service. The issue is triggered when invalid traffic is received by the DCE daemon occurs, and will result in loss of availability for the service.\n## Manual Testing Notes\nThis DoS can be caused by traffic generated by the \"Blaster\" worm.\n## References:\nVendor Specific Solution URL: ftp://patches.sgi.com/support/free/security/advisories/20030902-01-P \nVendor Specific Solution URL: ftp://ovweb.external.hp.com/pub/cpe/ito/DCE\n[Vendor Specific Advisory URL](http://www4.itrc.hp.com/service/cki/docDisplay.do?docId=HPSBUX0309-276)\n[Vendor Specific Advisory URL](http://www4.itrc.hp.com/service/cki/docDisplay.do?docId=HPSBUX0308-274)\n[Vendor Specific Advisory URL](http://www4.itrc.hp.com/service/cki/docDisplay.do?docId=HPSBUX0308-273)\n[Secunia Advisory ID:9538](https://secuniaresearch.flexerasoftware.com/advisories/9538/)\n[Secunia Advisory ID:9482](https://secuniaresearch.flexerasoftware.com/advisories/9482/)\n[Secunia Advisory ID:9861](https://secuniaresearch.flexerasoftware.com/advisories/9861/)\n[Related OSVDB ID: 2834](https://vulners.com/osvdb/OSVDB:2834)\nOther Advisory URL: http://archives.neohapsis.com/archives/hp/2003-q3/0042.html\nMicrosoft Security Bulletin: MS03-026\n[CVE-2003-0746](https://vulners.com/cve/CVE-2003-0746)\nCERT VU: 568148\nCERT VU: 377804\nCERT: CA-2003-16\nBugtraq ID: 8371\n", "modified": "2003-08-11T10:23:24", "published": "2003-08-11T10:23:24", "href": "https://vulners.com/osvdb/OSVDB:2385", "id": "OSVDB:2385", "type": "osvdb", "title": "MultiVendor DCE Unspecified DoS", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}], "securityvulns": [{"lastseen": "2018-08-31T11:10:08", "bulletinFamily": "software", "cvelist": ["CVE-2003-0746"], "description": "-----BEGIN PGP SIGNED MESSAGE-----\r\n\r\n______________________________________________________________________________\r\n SGI Security Advisory\r\n\r\n Title : DCE 1.2.2c Denial of Service Vulnerability\r\n Number : 20030902-01-P\r\n Date : September, 26 2003\r\n Reference : CVE CAN-2003-0746\r\n Reference : SGI BUG 897593\r\n Fixed in : Patches 5313/5314 for DCE 1.2.2c\r\n______________________________________________________________________________\r\n\r\nSGI provides this information freely to the SGI user community for its\r\nconsideration, interpretation, implementation and use. SGI recommends that\r\nthis information be acted upon as soon as possible.\r\n\r\nSGI provides the information in this Security Advisory on an "AS-IS" basis\r\nonly, and disclaims all warranties with respect thereto, express, implied\r\nor otherwise, including, without limitation, any warranty of merchantability\r\nor fitness for a particular purpose. In no event shall SGI be liable for\r\nany loss of profits, loss of business, loss of data or for any indirect,\r\nspecial, exemplary, incidental or consequential damages of any kind arising\r\nfrom your use of, failure to use or improper use of any of the instructions\r\nor information in this Security Advisory.\r\n______________________________________________________________________________\r\n\r\n- -----------------------\r\n- --- Issue Specifics ---\r\n- -----------------------\r\n\r\nIt has been reported that certain Microsoft RPC scanning can cause the\r\nDCE daemon dced to abort, causing a denial of service vulnerability.\r\n\r\nThe Common Vulnerabilities and Exposures project (cve.mitre.org) has\r\nassigned the name CAN-2003-0746 to this issue:\r\nhttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0746\r\n\r\nSGI has investigated the issue and recommends the following steps for\r\nneutralizing the exposure. It is HIGHLY RECOMMENDED that these measures\r\nbe implemented on ALL vulnerable SGI systems.\r\n\r\nThis vulnerability has been corrected with patches to DCE 1.2.2c and in\r\npotential future releases of DCE.\r\n\r\n\r\n- --------------\r\n- --- Impact ---\r\n- --------------\r\n\r\nDCE is an optional product, not installed by default.\r\n\r\nTo determine the version of DCE you are running, execute the following\r\ncommand:\r\n\r\n % versions -b dce dce_domestic\r\n\r\nThis will return a result similar to the following output:\r\n\r\n I = Installed, R = Removed\r\n\r\n Name Date Description\r\n\r\n I dce 08/01/2003 Distributed Computing Environment, 1.2.2c\r\n I dce_domestic 08/01/2003 Distributed Computing Environment(domestic), 1.2.2c\r\n\r\nIf the output is similar to the above, then DCE is installed and the\r\nsystem may be vulnerable unless patched.\r\n\r\n\r\n- ----------------------------\r\n- --- Temporary Workaround ---\r\n- ----------------------------\r\n\r\nThere is no effective workaround available for this vulnerability.\r\nSGI recommends either upgrading DCE (when available), or installing\r\nthe appropriate patch from the listing below.\r\n\r\n\r\n- ----------------\r\n- --- Solution ---\r\n- ----------------\r\n\r\nSGI has provided a series of patches for this vulnerability.\r\nOur recommendation is to upgrade DCE (when available), or\r\ninstall the appropriate patch.\r\n\r\nFor international version of DCE 1.2.2c, install patch 5313.\r\nFor domestic version of DCE 1.2.2c, install both patch 5313 and 5314.\r\n\r\nNote that, for export control reasons, the domestic patch 5314\r\nwill not be made available on the patches.sgi.com FTP site,\r\nand must be obtained from your SGI support representative.\r\n\r\nOlder versions of DCE are potentially vulnerable, but are\r\nno longer supported. No patches are available for older unsupported\r\nDCE releases.\r\n\r\n ##### Patch File Checksums ####\r\nFilename: README.patch.5313\r\nAlgorithm #1 (sum -r): 54174 9 README.patch.5313\r\nAlgorithm #2 (sum): 30234 9 README.patch.5313\r\nMD5 checksum: E0307B53001243D5A87FAA74CEBCFDAA\r\n\r\nFilename: patchSG0005313\r\nAlgorithm #1 (sum -r): 14338 4 patchSG0005313\r\nAlgorithm #2 (sum): 54694 4 patchSG0005313\r\nMD5 checksum: 3153FD44926CDE616A2A82E86FDBCD09\r\n\r\nFilename: patchSG0005313.dce_man\r\nAlgorithm #1 (sum -r): 35638 7 patchSG0005313.dce_man\r\nAlgorithm #2 (sum): 2968 7 patchSG0005313.dce_man\r\nMD5 checksum: 0333479CE3C5652B6E232422B5C451DD\r\n\r\nFilename: patchSG0005313.dce_sw\r\nAlgorithm #1 (sum -r): 21490 6527 patchSG0005313.dce_sw\r\nAlgorithm #2 (sum): 5488 6527 patchSG0005313.dce_sw\r\nMD5 checksum: 51E65B0D9FC72DF3817BC55A514437C2\r\n\r\nFilename: patchSG0005313.dce_sw32\r\nAlgorithm #1 (sum -r): 41987 6716 patchSG0005313.dce_sw32\r\nAlgorithm #2 (sum): 42956 6716 patchSG0005313.dce_sw32\r\nMD5 checksum: 5EFF27658E973E86A491BB2AA4404734\r\n\r\nFilename: patchSG0005313.dce_sw64\r\nAlgorithm #1 (sum -r): 17548 6823 patchSG0005313.dce_sw64\r\nAlgorithm #2 (sum): 32727 6823 patchSG0005313.dce_sw64\r\nMD5 checksum: 352B116D7FC928F1CEF08CC3CB7D2347\r\n\r\nFilename: patchSG0005313.idb\r\nAlgorithm #1 (sum -r): 01470 2 patchSG0005313.idb\r\nAlgorithm #2 (sum): 10197 2 patchSG0005313.idb\r\nMD5 checksum: 5B9F9B37B28F84D6FF63ADCE14B0A05F\r\n\r\nFilename: README.patch.5314\r\nAlgorithm #1 (sum -r): 02572 9 README.patch.5314\r\nAlgorithm #2 (sum): 34329 9 README.patch.5314\r\nMD5 checksum: B5C48AC12B403AB7F43769659F3A5762\r\n\r\nFilename: patchSG0005314\r\nAlgorithm #1 (sum -r): 35912 5 patchSG0005314\r\nAlgorithm #2 (sum): 21082 5 patchSG0005314\r\nMD5 checksum: A056DE501167973DC0C1765BA59F566D\r\n\r\nFilename: patchSG0005314.dce_domestic_sw\r\nAlgorithm #1 (sum -r): 48466 6591 patchSG0005314.dce_domestic_sw\r\nAlgorithm #2 (sum): 17258 6591 patchSG0005314.dce_domestic_sw\r\nMD5 checksum: 12FDB6C36AA931FCF7147594F3C547EF\r\n\r\nFilename: patchSG0005314.dce_domestic_sw32\r\nAlgorithm #1 (sum -r): 39925 6822 patchSG0005314.dce_domestic_sw32\r\nAlgorithm #2 (sum): 39342 6822 patchSG0005314.dce_domestic_sw32\r\nMD5 checksum: C50E8D2F8F2E07FDB0EDABC02639D5AA\r\n\r\nFilename: patchSG0005314.dce_domestic_sw64\r\nAlgorithm #1 (sum -r): 09209 6916 patchSG0005314.dce_domestic_sw64\r\nAlgorithm #2 (sum): 62264 6916 patchSG0005314.dce_domestic_sw64\r\nMD5 checksum: 78379D662001023EAA7A8DEE23067750\r\n\r\nFilename: patchSG0005314.idb\r\nAlgorithm #1 (sum -r): 51607 2 patchSG0005314.idb\r\nAlgorithm #2 (sum): 11196 2 patchSG0005314.idb\r\nMD5 checksum: 0B791839259EDCD27CB02577421ABF5B\r\n\r\n\r\n- ------------------------\r\n- --- Acknowledgments ----\r\n- ------------------------\r\n\r\nSGI wishes to thank Lawrence Livermore National Labs for their assistance\r\nin this matter.\r\n\r\n\r\n- -------------\r\n- --- Links ---\r\n- -------------\r\n\r\nSGI Security Advisories can be found at:\r\nhttp://www.sgi.com/support/security/ and\r\nftp://patches.sgi.com/support/free/security/advisories/\r\n\r\nSGI Security Patches can be found at:\r\nhttp://www.sgi.com/support/security/ and\r\nftp://patches.sgi.com/support/free/security/patches/\r\n\r\nSGI patches for IRIX can be found at the following patch servers:\r\nhttp://support.sgi.com/ and ftp://patches.sgi.com/\r\n\r\nSGI freeware updates for IRIX can be found at:\r\nhttp://freeware.sgi.com/\r\n\r\nSGI patches and RPMs for Linux can be found at:\r\nhttp://support.sgi.com\r\n\r\nSGI patches for Windows NT or 2000 can be found at:\r\nhttp://support.sgi.com/\r\n\r\nIRIX 5.2-6.4 Recommended/Required Patch Sets can be found at:\r\nhttp://support.sgi.com/ and ftp://patches.sgi.com/support/patchset/\r\n\r\nIRIX 6.5 Maintenance Release Streams can be found at:\r\nhttp://support.sgi.com/\r\n\r\nIRIX 6.5 Software Update CDs can be obtained from:\r\nhttp://support.sgi.com/\r\n\r\nThe primary SGI anonymous FTP site for security advisories and patches is\r\npatches.sgi.com. Security advisories and patches are located under the URL\r\nftp://patches.sgi.com/support/free/security/\r\n\r\nFor security and patch management reasons, ftp.sgi.com (mirrors\r\npatches.sgi.com security FTP repository) lags behind and does not do a\r\nreal-time update.\r\n\r\n\r\n- -----------------------------------------\r\n- --- SGI Security Information/Contacts ---\r\n- -----------------------------------------\r\n\r\nIf there are questions about this document, email can be sent to\r\nsecurity-info@sgi.com.\r\n\r\n ------oOo------\r\n\r\nSGI provides security information and patches for use by the entire SGI\r\ncommunity. This information is freely available to any person needing the\r\ninformation and is available via anonymous FTP and the Web.\r\n\r\nThe primary SGI anonymous FTP site for security advisories and patches is\r\npatches.sgi.com. Security advisories and patches are located under the URL\r\nftp://patches.sgi.com/support/free/security/\r\n\r\nThe SGI Security Headquarters Web page is accessible at the URL:\r\nhttp://www.sgi.com/support/security/\r\n\r\nFor issues with the patches on the FTP sites, email can be sent to\r\nsecurity-info@sgi.com.\r\n\r\nFor assistance obtaining or working with security patches, please\r\ncontact your SGI support provider.\r\n\r\n ------oOo------\r\n\r\nSGI provides a free security mailing list service called wiretap and\r\nencourages interested parties to self-subscribe to receive (via email) all\r\nSGI Security Advisories when they are released. Subscribing to the mailing\r\nlist can be done via the Web\r\n(http://www.sgi.com/support/security/wiretap.html) or by sending email to\r\nSGI as outlined below.\r\n\r\n% mail wiretap-request@sgi.com\r\nsubscribe wiretap <YourEmailAddress such as midwatch@sgi.com >\r\nend\r\n^d\r\n\r\nIn the example above, <YourEmailAddress> is the email address that you wish\r\nthe mailing list information sent to. The word end must be on a separate\r\nline to indicate the end of the body of the message. The control-d (^d) is\r\nused to indicate to the mail program that you are finished composing the\r\nmail message.\r\n\r\n\r\n ------oOo------\r\n\r\nSGI provides a comprehensive customer World Wide Web site. This site is\r\nlocated at http://www.sgi.com/support/security/ .\r\n\r\n ------oOo------\r\n\r\nIf there are general security questions on SGI systems, email can be sent to\r\nsecurity-info@sgi.com.\r\n\r\nFor reporting *NEW* SGI security issues, email can be sent to\r\nsecurity-alert@sgi.com or contact your SGI support provider. A support\r\ncontract is not required for submitting a security report.\r\n\r\n______________________________________________________________________________\r\n This information is provided freely to all interested parties\r\n and may be redistributed provided that it is not altered in any\r\n way, SGI is appropriately credited and the document retains and\r\n includes its valid PGP signature.\r\n\r\n-----BEGIN PGP SIGNATURE-----\r\nVersion: 2.6.2\r\n\r\niQCVAwUBP3Rpm7Q4cFApAP75AQElOQP+O/yzZPfiUaJ6SjJOzAKUDOTZRdi1gL9V\r\n11AwzNjxjGxdEza4JGbfW3j7VKEM8iKhA6RjmwWZgfm0DgTib87f5/tMYesOYryW\r\nW4/b/wm6zXyevWUGqQTG+x/rO9RPmcqBFuxUCA3RMLBGJh3QAxsrDQwAiguOuf2C\r\n6Sfy57y3CeY=\r\n=T+dI\r\n-----END PGP SIGNATURE-----", "edition": 1, "modified": "2003-09-29T00:00:00", "published": "2003-09-29T00:00:00", "id": "SECURITYVULNS:DOC:5166", "href": "https://vulners.com/securityvulns/SECURITYVULNS:DOC:5166", "title": "DCE 1.2.2c Denial of Service Vulnerability on IRIX", "type": "securityvulns", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}]}