Lucene search
+L

111 matches found

Check Point Advisories
Check Point Advisories
added 2010/05/17 12:0 a.m.71 views

Multiple Vendors RPC librpc.dll Stack Buffer Overflow (CVE-2009-2754)

Remote Procedure Call RPC is a protocol that a program can use to request a service from a program located on another computer in a network. The librpc.dll handles the RPC protocol parsing. A buffer overflow vulnerability exists in IBM's Informix Dynamic Server and EMC's Legato Networker. The...

10CVSS7.7AI score0.40321EPSS
Exploits5
Check Point Advisories
Check Point Advisories
added 2010/04/23 12:0 a.m.42 views

Preemptive Protection against IBM Informix Dynamic Server librpc.dll Multiple Buffer Overflows

Multiple buffer overflow vulnerabilities have been reported in IBM's Informix Dynamic Server. The vulnerabilities are due to insufficient validation of user inputs during authentication by the RPC protocol parsing library, librpc.dll. This library is used by the Portmapper service portmap.exe whi...

10CVSS7.8AI score0.10923EPSS
Exploits4
Prion
Prion
added 2010/03/05 4:30 p.m.18 views

Buffer overflow

Multiple buffer overflows in the authentication functionality in librpc.dll in the Informix Storage Manager ISM Portmapper service aka portmap.exe, as used in IBM Informix Dynamic Server IDS 10.x before 10.00.TC9 and 11.x before 11.10.TC3, allow remote attackers to execute arbitrary code via a...

10CVSS8.2AI score0.10923EPSS
Exploits4References8Affected Software1
Prion
Prion
added 2010/03/05 4:30 p.m.18 views

Integer overflow

Integer signedness error in the authentication functionality in librpc.dll in the Informix Storage Manager ISM Portmapper service aka portmap.exe, as used in IBM Informix Dynamic Server IDS 10.x before 10.00.TC9 and 11.x before 11.10.TC3 and EMC Legato NetWorker, allows remote attackers to execut...

10CVSS8.2AI score0.40321EPSS
Exploits5References10Affected Software1
CVE
CVE
added 2010/03/05 4:0 p.m.54 views

CVE-2009-2754

CVE-2009-2754 relates to a stack-based buffer overflow in librpc.dll’s authentication for the Portmapper service (portmap.exe) used by IBM Informix Dynamic Server (IDS) 10.x prior to 10.00.TC9 and 11.x prior to 11.10.TC3, and EMC Legato NetWorker. The issue is triggered by a crafted parameter siz...

10CVSS7.7AI score0.40321EPSS
Exploits5References10Affected Software1
Zero Day Initiative
Zero Day Initiative
added 2010/03/01 12:0 a.m.35 views

IBM Informix librpc.dll Multiple Remote Code Execution Vulnerabilities

This vulnerability allows attackers to execute arbitrary code on vulnerable installations of both IBM Informix Dynamic Server. User interaction is not required to exploit this vulnerability. The specific flaws exist within the RPC protocol parsing library, librpc.dll, utilized by the ISM Portmapp...

10CVSS4.8AI score0.10923EPSS
Exploits4References3
Zero Day Initiative
Zero Day Initiative
added 2010/03/01 12:0 a.m.33 views

Multiple Vendor librpc.dll Signedness Error Remote Code Execution Vulnerability

This vulnerability allows attackers to execute arbitrary code on vulnerable installations of both IBM Informix Dynamic Server and EMC Legato Networker. User interaction is not required to exploit this vulnerability. The specific flaw exists within the RPC protocol parsing library, librpc.dll,...

10CVSS5.4AI score0.40321EPSS
Exploits5References3
Check Point Advisories
Check Point Advisories
added 2009/11/06 12:0 a.m.1 views

Update Protection against Novell NetWare NFS Portmapper RPC Module Stack Overflow

A buffer overflow vulnerability exists in Novell NetWare NFS Portmapper daemon. Netware is a network operating system developed by Novell, providing file sharing and other services such as printing and email. The vulnerability is due to a boundary error when handling RPC calls. Unauthenticated...

8.2AI score
Exploits0
Zero Day Initiative
Zero Day Initiative
added 2009/09/30 12:0 a.m.60 views

Novell NetWare NFS Portmapper and RPC Module Stack Overflow Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Novell Netware NFS Portmapper daemon. Authentication is not required to exploit this vulnerability. The specific flaw exists within the processing of CALLIT RPC calls. The vulnerable daemon...

3.8AI score
Exploits0References1
seebug.org
seebug.org
added 2009/06/11 12:0 a.m.16 views

IBM AIX 'portmapper'远程拒绝服务漏洞

Bugraq ID: 35211 IBM AIX是一款商业性质的操作系统。 IBM AIX 'portmapper'存在安全问题,远程攻击者可以利用漏洞对依赖'portmapper'服务的NFS,NIS或其他子系统崩溃。 目前没有详细漏洞细节提供。 IBM AIX 5.3 可参考如下补丁信息: IBM AIX 5.3 IBM IZ50802.53TL8SP6.epkg.Z ftp://ftp.software.ibm.com/aix/efixes/iz50802/IZ50802.53TL8SP6.epkg.Z...

6.9AI score
Exploits0
Prion
Prion
added 2009/06/08 1:0 a.m.18 views

Design/Logic Flaw

Unspecified vulnerability in portmapper aka portmap in IBM AIX 5.3 allows attackers to cause a denial of service daemon hang via unknown vectors, related to libtli...

7.8CVSS6.8AI score0.01309EPSS
Exploits0References4Affected Software1
NVD
NVD
added 2009/06/08 1:0 a.m.19 views

CVE-2009-1954

Unspecified vulnerability in portmapper aka portmap in IBM AIX 5.3 allows attackers to cause a denial of service daemon hang via unknown vectors, related to libtli...

7.8CVSS6.4AI score0.01309EPSS
Exploits0References4
Cvelist
Cvelist
added 2009/06/06 6:0 p.m.23 views

CVE-2009-1954

Unspecified vulnerability in portmapper aka portmap in IBM AIX 5.3 allows attackers to cause a denial of service daemon hang via unknown vectors, related to libtli...

6.4AI score0.01309EPSS
Exploits0References4
CVE
CVE
added 2009/06/06 6:0 p.m.58 views

CVE-2009-1954

CVE-2009-1954 affects IBM AIX 5.3 portmapper (portmap). The vulnerability is described as an unspecified DoS in portmapper related to libtli, allowing a daemon hang via unknown vectors. Public details in the provided records are limited to the general impact and affected component; no concrete ex...

7.8CVSS6.5AI score0.01309EPSS
Exploits0References4Affected Software1
OpenVAS
OpenVAS
added 2009/03/12 12:0 a.m.57 views

RPC Portmapper Service Detection (TCP)

TCP based detection of a RPC portmapper service. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.3CVSS7AI score0.0098EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2009/03/12 12:0 a.m.43 views

RPC Portmapper Service Detection (UDP)

UDP based detection of a RPC portmapper service. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.3CVSS6.5AI score0.0098EPSS
Exploits0References2
Nmap
Nmap
added 2008/01/08 11:13 p.m.1061 views

rpcinfo NSE Script

Connects to portmapper and fetches a list of all registered programs. It then prints out a table including for each program the RPC program number, supported version numbers, port number and protocol, and program name. See also: rpc-grind.nse Script Arguments mount.version, nfs.version,...

10CVSS9.3AI score0.99448EPSS
Exploits33
Tenable Nessus
Tenable Nessus
added 2007/05/25 12:0 a.m.139 views

RPC rpcbind Non-standard Port Assignment Filter Bypass

The RPC portmapper is running on this port. The portmapper allows someone to get the port number of each RPC service running on the remote host by sending either multiple lookup requests or a DUMP request. This service should only run on port 111. However on some operating systems it also listens...

7.5CVSS5.5AI score0.01184EPSS
Exploits0References2
securityvulns
securityvulns
added 2007/04/21 12:0 a.m.36 views

Apple Mac OS X RPC portmapper service integer overflow

Integer overflow during AUTHUNIX RPC uahtneitcation...

3.2AI score
Exploits0References1Affected Software2
NVD
NVD
added 2005/08/23 4:0 a.m.20 views

CVE-2005-0359

The Legato PortMapper in EMC Legato NetWorker, Sun Solstice Backup 6.0 and 6.1, and StorEdge Enterprise Backup 7.0 through 7.2 does not restrict access to the pmapset and pmapunset commands, which allows remote attackers to 1 cause a denial of service by using pmapunset to un-register a NetWorker...

6.4CVSS6.3AI score0.04293EPSS
Exploits0References9
Rows per page
Query Builder