| Reporter | Title | Published | Views | Family All 12 |
|---|---|---|---|---|
| CVE-1999-0632 | 1 Jan 199905:00 | – | attackerkb | |
| CVE-1999-0632 | 4 Feb 200005:00 | – | cve | |
| CVE-1999-0632 | 4 Feb 200005:00 | – | cvelist | |
| EUVD-1999-0615 | 7 Oct 202500:30 | – | euvd | |
| K62832776: RPC portmapper vulnerability CVE-1999-0632 | 21 Feb 202320:00 | – | f5 | |
| CVE-1999-0632 | 1 Jan 199905:00 | – | nvd | |
| RPC Portmapper Service Detection (UDP) | 12 Mar 200900:00 | – | openvas | |
| PT-1999-1236 | 1 Jan 199900:00 | – | ptsecurity | |
| CVE-1999-0632 | 21 May 202518:11 | – | redhatcve | |
| RPC portmapper Service Detection | 19 Aug 199900:00 | – | nessus |
| Source | Link |
|---|---|
| datatracker | www.datatracker.ietf.org/doc/html/rfc1833 |
| en | www.en.wikipedia.org/wiki/Portmap |
# SPDX-FileCopyrightText: 2009 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only
if(description)
{
script_oid("1.3.6.1.4.1.25623.1.0.108090");
script_version("2023-09-12T05:05:19+0000");
script_cve_id("CVE-1999-0632");
script_tag(name:"last_modification", value:"2023-09-12 05:05:19 +0000 (Tue, 12 Sep 2023)");
script_tag(name:"creation_date", value:"2009-03-12 10:50:11 +0100 (Thu, 12 Mar 2009)");
script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:N/C:N/I:N/A:N");
script_tag(name:"cvss_base", value:"0.0");
script_name("RPC Portmapper Service Detection (TCP)");
script_category(ACT_GATHER_INFO);
script_copyright("Copyright (C) 2009 Greenbone AG");
script_family("Service detection");
script_require_ports(111, 121, 530, 593);
script_xref(name:"URL", value:"https://en.wikipedia.org/wiki/Portmap");
script_xref(name:"URL", value:"https://datatracker.ietf.org/doc/html/rfc1833");
script_tag(name:"summary", value:"TCP based detection of a RPC portmapper service.");
script_tag(name:"insight", value:"The RPC portmapper service is an unsecured protocol for Internet
facing systems and should only be used on a trusted network segment, otherwise disabled. The
software should be patched and configured properly.");
script_tag(name:"qod_type", value:"remote_banner");
exit(0);
}
include("host_details.inc");
include("port_service_func.inc");
include("rpc.inc");
include("byte_func.inc");
RPC_PROG = 100000;
proto = "tcp";
extra = "Possible known aliases / names for this product are 'port mapper', 'rpc.portmap', 'portmap' or 'rpcbind'";
# nb: Not defined in the NVD (yet). It seems there might be multiple services / vendors which
# *could* have implemented this service daemon (e.g. "rpcbind") and for now we're just using an own
# defined CPE here.
CPE = "cpe:/a:portmap:portmap";
foreach _port( make_list( 111, 121, 530, 593 ) ) {
if( ! get_tcp_port_state( _port ) )
continue;
if( ! rpc_get_port( program:RPC_PROG, protocol:IPPROTO_TCP, portmap:_port ) )
continue;
install = _port + "/" + proto;
replace_kb_item( name:"rpc/portmap/port", value:_port );
replace_kb_item( name:"rpc/portmap/tcp/port", value:_port );
set_kb_item( name:"rpc/portmap/detected", value:TRUE );
set_kb_item( name:"rpc/portmap/tcp/detected", value:TRUE );
set_kb_item( name:"rpc/portmap/tcp_or_udp/detected", value:TRUE );
set_kb_item( name:"rpc/portmap/" + proto + "/" + _port + "/detected", value:TRUE );
service_register( port:_port, proto:"rpc-portmap", ipproto:proto );
register_product( cpe:CPE, location:install, port:_port, service:"rpc-portmap", proto:proto );
log_message( data:build_detection_report( app:"RPC Portmapper",
skip_version:TRUE,
install:install,
extra:extra,
cpe:CPE ),
port:_port, proto:proto );
}
exit( 0 );
Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation