HP-UX PHSS_29966 : HP-UX Running DCE, Remote Denial of Service (DoS) (HPSBUX00299 SSRT3660 rev.4)

s700800 11.23 HP DCE 1.9 client cumulative patch : Potential security vulnerability in DCE. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and patch checks in this plugin were extracted from HP patch PHSS29966. The text itself is copyright C Hewlett-Packard Development...

HP-UX PHSS_30302 : s700_800 11.04 (VVOS) DCE/9000 1.7 Runtime cumulative patch

s700800 11.04 VVOS DCE/9000 1.7 Runtime cumulative patch : The remote HP-UX host is affected by multiple vulnerabilities : - Potential security vulnerability in DCE. HPSBUX00299 SSRT3660 - A potential security vulnerability has been identified in HP-UX running swagentd. The vulnerability could be...

HP-UX PHSS_29963 : s700_800 11.00 HP DCE/9000 1.7 Runtime cumulative patch

s700800 11.00 HP DCE/9000 1.7 Runtime cumulative patch : The remote HP-UX host is affected by multiple vulnerabilities : - Potential security vulnerability in DCE. HPSBUX00299 SSRT3660 - A potential security vulnerability has been identified in HP-UX running swagentd. The vulnerability could be...

CVE-2004-0716

Buffer overflow in the DCE daemon DCED for the DCE endpoint mapper epmap on HP-UX 11 allows remote attackers to execute arbitrary code via a request with a small fragment length and a large amount of data...

CVE-2004-0716

CVE-2004-0716 is a buffer overflow in HP’s DCE endpoint mapper (epmap) within the DCED daemon on HP-UX 11, allowing remote code execution via a small fragment length and large stub data. Patches exist: HP-UX patches B.11.00 PHSS_29963, B.11.11 PHSS_29964, B.11.23 PHSS_29966; HP Tru64 and HP OpenV...

CVE-2004-0716

Buffer overflow in the DCE daemon DCED for the DCE endpoint mapper epmap on HP-UX 11 allows remote attackers to execute arbitrary code via a request with a small fragment length and a large amount of data...

HP Tru64 UNIX/OpenVMS/HP-UX DCE server buffer overflow

Buffer overflow on RPC parsing...

[security bulletin] SSRT4741 rev.1 DCE for HP OpenVMS Potential RPC Buffer Overflow Attack VU#259796, VU#568148, VU#326746

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 HP SECURITY BULLETIN HPSBOV010561 REVISION: 1 TITLE: SSRT4741 Rev.1 DCE for HP OpenVMS Potential RPC Buffer Overrun Attack NOTICE: There are no restrictions for distribution of this Bulletin provided that it remains complete and intact. The informatio...

[CORE-2003-12-05] DCE RPC Vulnerabilities New Attack Vectors Analysis

Core Security Technologies Advisory http://www.coresecurity.com DCE RPC Vulnerabilities New Attack Vectors Analysis Date Published: 2003-12-10 Last Update: 2003-12-10 Advisory ID: CORE-2003-12-05 Title: DCE RPC Vulnerabilities New Attack Vectors Analysis Remotely Exploitable: Yes Locally...

DCE RPC Vulnerabilities New Attack Vectors Analysis

Date Published: 2003-12-10 Last Update: 2003-12-10 Advisory ID: CORE-2003-12-05 Title: DCE RPC Vulnerabilities New Attack Vectors Analysis Remotely Exploitable: Yes Locally Exploitable: Yes Vendors contacted: - Microsoft . Core notification: 2003-12-09 . Notification acknowledged by Microsoft:...

DCE RPC Vulnerabilities New Attack Vectors Analysis

Date Published: 2003-12-10 Last Update: 2003-12-10 Advisory ID: CORE-2003-12-05 Title: DCE RPC Vulnerabilities New Attack Vectors Analysis Remotely Exploitable: Yes Locally Exploitable: Yes Vendors contacted: - Microsoft . Core notification: 2003-12-09 . Notification acknowledged by Microsoft:...

DCE 1.2.2c Denial of Service Vulnerability on IRIX

-----BEGIN PGP SIGNED MESSAGE----- SGI Security Advisory Title : DCE 1.2.2c Denial of Service Vulnerability Number : 20030902-01-P Date : September, 26 2003 Reference : CVE CAN-2003-0746 Reference : SGI BUG 897593 Fixed in : Patches 5313/5314 for DCE 1.2.2c SGI provides this information freely to...

CVE-2003-0746

CVE-2003-0746 is a composite DoS entry tied to earlier MS03-026-style DCOM/RPC vulnerabilities (CVE-2003-0352, CVE-2003-0605). Connected sources confirm that multiple DCE/ RPC implementations, notably Microsoft Windows RPCSS/DCOM interfaces, could be overwhelmed by malformed DCERPC messages, with...

CVE-2003-0428

CVE-2003-0428 involves an unknown vulnerability in the DCERPC (DCE/RPC) dissector of Ethereal 0.9.12 and earlier. The issue allows remote attackers to cause a denial of service via memory consumption when decoding a crafted NDR string. Public sources describe the vulnerability across multiple adv...

Ethereal DCE RPC dissector vulnerable to DoS

Overview A vulnerability in Ethereal may allow a remote attacker to cause a denial of service. Description The Ethereal web site describes Ethereal as "a free network protocol analyzer for Unix and Windows. It allows you to examine data from a live network or from a capture file on disk. You can...

Reproducing the MS DCE-RPC DOS.

Attached to this e-mail is a Java program and a data file which can be used to manually reproduce the DCE-RPC DOS from SPIKE v2.7. Compile it first with: $ javac EtherealReplay.java Then run it with: $ java EtherealReplay 192.168.x.x 135 windowsrpckill You may need to wait a few seconds before...

CVE-2002-1041

Unknown vulnerability in DCE 1 SMIT panels and 2 configuration commands, possibly related to relative pathnames...

CVE-2002-0992

Unknown vulnerability in IPV6 functionality for DCE daemons 1 dced or 2 rpcd on HP-UX 11.11 allows attackers to cause a denial of service crash via an attack that modifies internal data...

CVE-2002-0992

The CVE-2002-0992 entry describes an unknown vulnerability in the IPV6 functionality of DCE daemons (dced and rpcd) on HP-UX 11.11. The issue allows an attacker to cause a denial of service (crash) by performing an attack that modifies internal data. The connected documents confirm the affected c...

CVE-2002-1041

Unknown vulnerability in DCE 1 SMIT panels and 2 configuration commands, possibly related to relative pathnames...