This site is deprecated. Please
CLICK HERE for latest updates
Short Name |
APP:CDE-DTSPCD-OF
|
Severity |
Critical
|
Recommended |
No
|
Recommended Action |
Drop
|
Category |
APP
|
Keywords |
CDE dtspcd Overflow
|
Release Date |
2003/04/25
|
Update Number |
1213
|
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+
|
APP: CDE dtspcd Overflow
This signature detects attempts to exploit a known vulnerability against CDE, a Motif-based GUI for UNIX systems. Attackers can use dtspcd, a server program that listens on TCP/6112, to overflow the buffer in the libDtSvc library and gain administrative privileges. This signature can also trigger on Bittorent traffic running on TCP/6112.
Extended Description
CDE is a Motif-based graphical user environment for UNIX systems. It is shipped with a number of commercial systems.
A buffer-overflow vulnerability in the 'dtspcd' component may allow a remote attacker to gain administrative privileges on the affected host. The overflow is believed to be in the libDtSvc library, which used by the 'Subprocess Control Service'. The overflow is exploitable through the 'dtspcd' service,a server utility that facilitates remote invocation of CDE utilities and commands. The 'dtspcd' service listens on TCP port 6112, runs with root privileges, and is enabled by default (through 'inetd') on many systems.
Affected Products
- Caldera openunix 8.0.0
- Caldera unixware 7
- Compaq tru64 4.0.0 f
- Compaq tru64 4.0.0 g
- Compaq tru64 5.0.0
- Compaq tru64 5.0.0 a
- Compaq tru64 5.1.0
- Compaq tru64 5.1.0 a
- Hp hp-ux 10.10.0
- Hp hp-ux 10.20.0
- Hp hp-ux 11.0.0
- Hp hp-ux 11.11.0
- Hp hp-ux_(vvos) 10.24.0
- Hp hp-ux_(vvos) 11.0.0 4
- Hp hp-ux_(vvos) 11.0.4
- Ibm aix 4.0.0
- Ibm aix 4.1.0
- Ibm aix 4.1.1
- Ibm aix 4.1.2
- Ibm aix 4.1.3
- Ibm aix 4.1.4
- Ibm aix 4.1.5
- Ibm aix 4.2.0
- Ibm aix 4.2.1
- Ibm aix 4.3.0
- Ibm aix 4.3.1
- Ibm aix 4.3.2
- Ibm aix 4.3.3
- Ibm aix 5.1
- Open_group cde_common_desktop_environment 1.0.1
- Open_group cde_common_desktop_environment 1.0.2
- Open_group cde_common_desktop_environment 1.1.0
- Open_group cde_common_desktop_environment 1.2.0
- Open_group cde_common_desktop_environment 2.0.0
- Open_group cde_common_desktop_environment 2.1.0
- Sgi irix 6.1.0
- Sgi irix 6.2.0
- Sgi irix 6.3.0
- Sgi irix 6.4.0
- Sgi irix 6.5.0
- Sgi irix 6.5.1
- Sgi irix 6.5.10
- Sgi irix 6.5.11
- Sgi irix 6.5.12
- Sgi irix 6.5.13
- Sgi irix 6.5.2
- Sgi irix 6.5.3
- Sgi irix 6.5.4
- Sgi irix 6.5.5
- Sgi irix 6.5.6
- Sgi irix 6.5.7
- Sgi irix 6.5.8
- Sgi irix 6.5.9
- Sun solaris 2.4
- Sun solaris 2.4_x86
- Sun solaris 2.5
- Sun solaris 2.5.1
- Sun solaris 2.5.1_ppc
- Sun solaris 2.5.1_x86
- Sun solaris 2.5_x86
- Sun solaris 2.6
- Sun solaris 2.6_x86
- Sun solaris 7.0
- Sun solaris 7.0_x86
- Sun solaris 8 Sparc
- Sun solaris 8 X86
- Xi_graphics dextop 2.1.0
- Xi_graphics maximum_cde 1.2.3
References