cachefsd heap overflow

2006-04-05T00:00:00
ID SAINT:B3F3037AA3E9EA0D7F6A527A77125B8F
Type saint
Reporter SAINT Corporation
Modified 2006-04-05T00:00:00

Description

Added: 04/05/2006
CVE: CVE-2002-0033
BID: 4674
OSVDB: 779

Background

**cachefsd** is an RPC service which supports local caching of Network File Systems (NFS), thereby improving performance on filesystems mounted from an NFS server.

Problem

A heap overflow in **cachefsd** allows remote command execution.

Resolution

Apply the patch or workaround referenced in Sun Alert 44309.

References

<http://www.cert.org/advisories/CA-2002-11.html>

Platforms

SunOS 5.6 / Solaris 2.6
SunOS 5.7 / Solaris 7