84 matches found
Sun Solaris RPC服务库librpcsvc(3LIB)拒绝服务漏洞
BUGTRAQ ID: 26071 Solaris是一款由Sun开发和维护的商业性质UNIX操作系统。 如果用户调用了automountd1M服务去访问导出了大量文件系统的远程NFS服务器的话,Solaris RPC服务库(librpcsvc3LIB)中的安全漏洞可能允许本地非特权用户在系统上导致automountd1M守护程序崩溃。如果这个漏洞被利用,则用户可能看到访问autofs4加载点的进程变得没有响应并挂起。在Solaris 8、Solaris 9和Solaris 10系统上,控制台会打印且syslogd1M守护程序会记录类似于以下的消息: Sep 7 08:50:20...
CVE-2007-5462
CVE-2007-5462 affects Sun Solaris librpcsvc (RPC services library) on Solaris 8–10, enabling a remote attacker to crash mountd (and locally automountd via requests) through unspecified packets when the server exports many filesystems. Patch information in connected documents shows Solaris patch 1...
CVE-2007-1993
Buffer overflow in the pfsmountd.rpc RPC daemon in the Portable File System PFS in HP-UX B.11.00, B.11.11, and B.11.23 allows remote attackers to execute arbitrary code by sending "a call to procedure 5, followed by a crafted payload to procedure 2."...
Buffer overflow
Buffer overflow in the pfsmountd.rpc RPC daemon in the Portable File System PFS in HP-UX B.11.00, B.11.11, and B.11.23 allows remote attackers to execute arbitrary code by sending "a call to procedure 5, followed by a crafted payload to procedure 2."...
Slackware 8.1 / 9.0 / current : nfs-utils packages replaced (SSA:2003-195-01b)
New nfs-utils packages are available for Slackware 8.1, 9.0, and -current to replace the ones that were issued yesterday. A bug in has been fixed in utils/mountd/auth.c that could cause mountd to crash. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks i...
CVE-2004-1039
The CVE-2004-1039 issue affects SCO UnixWare 7.1.1, 7.1.3, 7.1.4, and 7.0.1 (and possibly other versions) when NFS mountd is run via inetd. The vulnerability arises because inetd spawns a new mountd process for each NFS mount-related request, causing memory exhaustion and potentially a system cra...
CVE-2004-1039
The NFS mountd service on SCO UnixWare 7.1.1, 7.1.3, 7.1.4, and 7.0.1, and possibly other versions, when run from inetd, allows remote attackers to cause a denial of service memory exhaustion via a series of requests, which causes inetd to launch a separate process for each request...
Unixware mountd DoS
Multiple connections lead to system resources exhaustion...
[NILESA-20050101]: Denial of Service vulnerability due to the mountd bug
================================================================================ NileSOFT Security Advisory -------------------------------------------------------------------------------- ID : NILESA-20050101 Title : Denial of Service vulnerability due to the mountd bug Vendor : SCO URL :...
CVE-2004-1039
The NFS mountd service on SCO UnixWare 7.1.1, 7.1.3, 7.1.4, and 7.0.1, and possibly other versions, when run from inetd, allows remote attackers to cause a denial of service memory exhaustion via a series of requests, which causes inetd to launch a separate process for each request...
DEBIAN-CVE-2004-0154
rpc.mountd in nfs-utils after 1.0.3 and before 1.0.6 allows attackers to cause a denial of service crash via an NFS mount of a directory from a client whose reverse DNS lookup name is different from the forward lookup name...
CVE-2004-0154
rpc.mountd in nfs-utils after 1.0.3 and before 1.0.6 allows attackers to cause a denial of service crash via an NFS mount of a directory from a client whose reverse DNS lookup name is different from the forward lookup name...
DEBIAN-CVE-2003-0252
Off-by-one error in the xlog function of mountd in the Linux NFS utils package nfs-utils before 1.0.4 allows remote attackers to cause a denial of service and possibly execute arbitrary code via certain RPC requests to mountd that do not contain newlines...
CVE-2003-0252
Off-by-one error in the xlog function of mountd in the Linux NFS utils package nfs-utils before 1.0.4 allows remote attackers to cause a denial of service and possibly execute arbitrary code via certain RPC requests to mountd that do not contain newlines...
nfs-utils packages replaced
New nfs-utils packages are available for Slackware 8.1, 9.0, and -current to replace the ones that were issued yesterday. A bug in has been fixed in utils/mountd/auth.c that could cause mountd to crash. Here are the details from the Slackware 9.0 ChangeLog: Tue Jul 15 10:42:58 PDT 2003...
CVE-2003-0252
Off-by-one error in the xlog function of mountd in the Linux NFS utils package nfs-utils before 1.0.4 allows remote attackers to cause a denial of service and possibly execute arbitrary code via certain RPC requests to mountd that do not contain newlines...
CVE-2003-0252
CVE-2003-0252 describes an off-by-one overflow in the xlog() function used by mountd in the Linux nfs-utils package (pre-1.0.4). Exploitation could allow remote attackers to cause a denial of service and potentially execute arbitrary code via certain RPC requests to mountd that do not contain new...
CVE-2003-0252
Off-by-one error in the xlog function of mountd in the Linux NFS utils package nfs-utils before 1.0.4 allows remote attackers to cause a denial of service and possibly execute arbitrary code via certain RPC requests to mountd that do not contain newlines...
CVE-1999-0002
Buffer overflow in NFS mountd gives root access to remote attackers, mostly in Linux systems...
CVE-1999-0002
CVE-1999-0002 is a buffer overflow in the NFS mountd service that can give remote root access on Linux-like systems. The core description across sources confirms a remote-executable overflow in mountd, potentially enabling privilege elevation without an account. Public references describe related...