On internal Unix host common security vulnerability description-vulnerability warning-the black bar safety net

2007-03-13T00:00:00
ID MYHACK58:62200714525
Type myhack58
Reporter 佚名
Modified 2007-03-13T00:00:00

Description

Impact:

Intruders can use this vulnerability to modify web pages, to get the host management rights.

Event description:

In attacks of UNIX systems, intruders often use the following

|

rpc. ttdbserver rpc. cmsd rpc. statd/automountd sadmind


The program of the Buffer Overflow vulnerability from a remote invasion of the host.

Workaround:

  1. The unnecessary RPC service from /etc/inetd. conf, remove, Remove method for

(1)edit the /etc/inetd. conf, the unnecessary service preceded by "#" or deleted directly after the storage disc;

(2)kill-HUP inetd. pid.

  1. Install the hotfix (patch)

(1)rpc. statd and automountd

Solaris: please refer to your version to install the following hotfix

rpc. statd:

OS Version Patch ID


SunOS 5.6 106592-02 SunOS 5. 6_x86 106593-02 SunOS 5.5.1 104166-04 SunOS 5.5. 1_x86 104167-04 SunOS 5.5 103468-04 SunOS 5. 5_x86 103469-05 SunOS 5.4 102769-07 SunOS 5. 4_x86 102770-07 SunOS 5.3 102932-05

automountd:

OS Version Patch ID


SunOS 5.5.1 104654-05 SunOS 5.5. 1_x86 104655-05 SunOS 5.5 103187-43 SunOS 5. 5_x86 103188-43 SunOS 5.4 101945-61 SunOS 5. 4_x86 101946-54 SunOS 5.3 101318-92


Archives from the following URL download:

ftp://sunsolve.sun.com/pub/patches

RedHat: the

Please refer to the following URL:

http://www.redhat.com/support/errata/RHSA-2000-043-03.HTML

Debian: the

Please refer to the following URL:

http://www.debian.org/security/2000/20000719a

(2)rpc. cmsd

Solaris:

Please follow your version, install the following hotfix

OpenWindows: the

SunOS version Patch ID


SunOS 5.5.1 104976-04 SunOS 5.5. 1_x86 105124-03 SunOS 5.5 103251-09 SunOS 5. 5_x86 103273-07 SunOS 5.3 101513-14 SunOS 4.1.4 100523-25 SunOS 4.1. 3_U1 100523-25

CDE:

CDE version Patch ID


1.3 107022-03 1. 3_x86 107023-03 1.2 105566-07 1. 2_x86 105567-08


Archives from the following URL download:

ftp://sunsolve.sun.com/pub/patches

(3)rpc. ttdbserverd

Solaris:

Please follow your version, install the following hotfix

SunOS version Patch ID


5.7 107893-04 5. 7_x86 107894-04 5.6 105802-11 5. 6_x86 105803-13 5.5.1 104489-10 5.5. 1_x86 105496-08 5.5 104428-08 5. 5_x86 105495-06 5.4 102734-05


Archives from the following URL download:

ftp://sunsolve.sun.com/pub/patches

(4)sadmind

Solaris:

Please follow your version, install the following hotfix

OS Version Patch ID


SunOS 5.7 108662-01 SunOS 5. 7_x86 108663-01 SunOS 5.6 108660-01 SunOS 5. 6_x86 108661-01 SunOS 5.5.1 108658-01 SunOS 5.5. 1_x86 108659-01


(t003:)