Signature Detail
Short Name |
RPC:RPC.CMSD:RPC-CMSD-OVERFLOW |
|---|---|
Severity |
High |
Recommended |
No |
Recommended Action |
Drop |
Category |
RPC |
Keywords |
Multiple Vendor CDE Calendar Manager Service Buffer Overflow |
Release Date |
2003/04/22 |
Update Number |
1213 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+ |
RPC: Multiple Vendor CDE Calendar Manager Service Buffer Overflow
This signature detects attempts to exploit a known vulnerability against the rpc.cmsd file in CDE database manager. A successful attack can allow an attacker to overflow the buffer and gain root access.
Extended Description
There is a remotely exploitable buffer overflow vulnerability in rpc.cmsd which ships with Sun's Solaris and HP-UX versions 10.20, 10.30 and 11.0 operating systems. The consequence is a remote root compromise.
Affected Products
- Caldera OpenUnix 8.0.0
- Caldera UnixWare 7.1.1
- HP HP-UX 10.20.0
- HP HP-UX 10.24.0
- HP HP-UX 10.30.0
- HP HP-UX 11.0.0
- Sun Solaris 2.3
- Sun Solaris 2.4
- Sun Solaris 2.5
- Sun Solaris 2.5.1
- Sun Solaris 2.6
- Sun Solaris 7.0
- Sun SunOS 4.1.3
- Sun SunOS 4.1.3 c
- Sun SunOS 4.1.3 _U1
- Sun SunOS 4.1.4
References