EUVD-2000-0032

Malware in sbrugna...

Sun Solaris 10 RPC dmispd Remote Resource Consumption Exploit

No description provided by source. / camisado.c AKA Sun Solaris 10 RPC dmispd Remote Resource Consumption Exploit Jeremy Brown [email protected]//jbrownsec.blogspot.com//krakowlabs.com 09.24.2009 Another long night in ONC RPC fuzzing land... uname -a SunOS unknown 5.10 Generic139555-08 sun4u...

Sun Solarsi dmispd DoS

Resource exhaustion in RPC-based service...

Sun Solaris 10 RPC dmispd DoS

Exploit for unknown platform in category dos / poc ============================= Sun Solaris 10 RPC dmispd DoS ============================= Title: Sun Solaris 10 RPC dmispd DoS CVE-ID: OSVDB-ID: Author: Jeremy Brown view source print? / camisado.c AKA Sun Solaris 10 RPC dmispd Remote Resource...

Sun Solaris 10 RPC dmispd Remote Resource Consumption Exploit

/ camisado.c AKA Sun Solaris 10 RPC dmispd Remote Resource Consumption Exploit Jeremy Brown [email protected]//jbrownsec.blogspot.com//krakowlabs.com 09.24.2009 Another long night in ONC RPC fuzzing land... uname -a SunOS unknown 5.10 Generic139555-08 sun4u sparc SUNW,Ultra-510 svcadm restart...

Sun Solaris 10 RPC dmispd DoS

No description provided by source. / camisado.c AKA Sun Solaris 10 RPC dmispd Remote Resource Consumption Exploit Jeremy Brown [email protected]//jbrownsec.blogspot.com//krakowlabs.com 09.24.2009 Another long night in ONC RPC fuzzing land... uname -a SunOS unknown 5.10 Generic139555-08 sun4u...

Sun Solaris 10 RPC dmispd - Denial of Service

Sun Solaris 10 RPC dmispd - Denial of Service / camisado.c AKA Sun Solaris 10 RPC dmispd Remote Resource Consumption Exploit Jeremy Brown [email protected]//jbrownsec.blogspot.com//krakowlabs.com 09.24.2009 Another long night in ONC RPC fuzzing land... uname -a SunOS unknown 5.10...

CVE-2002-0391

CVE-2002-0391 describes an integer overflow in the xdr_array function of RPC servers using libc/glibc or SunRPC-based code (e.g., dietlibc), enabling remote code execution by passing a large number of RPC arguments. The OpenVAS/DSA entries show Debian advisories addressing this issue across multi...

DEBIAN-CVE-2002-0391

Integer overflow in xdrarray function in RPC servers for operating systems that use libc, glibc, or other code based on SunRPC including dietlibc, allows remote attackers to execute arbitrary code by passing a large number of arguments to xdrarray through RPC services such as rpc.cmsd and dmispd...

CVE-2000-0032

Solaris dmi_cmd vulnerability CVE-2000-0032 allows local users to crash the dmispd daemon by placing a malformed file in /var/dmi/db. The description does not provide exploit details, affected versions, or remediation. No additional technical details are given in the connected documents. Actionab...

CVE-2000-0030

CVE-2000-0030 affects Solaris dmispd dmi_cmd, allowing a local user to exhaust restricted disk space by adding files to /var/dmi/db. The NVD entry lists a MEDIUM base score (5.0) with availability impact and no confidentiality/integrity impact, and indicates a local-access condition despite the C...

CVE-2000-0032

Solaris dmicmd allows local users to crash the dmispd daemon by adding a malformed file to the /var/dmi/db database...

CVE-2000-0032

Solaris dmicmd allows local users to crash the dmispd daemon by adding a malformed file to the /var/dmi/db database...

solaris.dmispd.txt

Greetings, OVERVIEW Several holes in the Solaris 2.7 SPARC/x86 dmispd daemon will allow malicious users to do various DoS attacks and probably more. BACKGROUND I've only tested 2.7 with the latest patches as of this writing. dmispd is the "DMI service provider". I would appreciate if someone who...