Signature Detail
Short Name |
RPC:RPC.MOUNTD:LINUX-MOUNTD-OBO |
|---|---|
Severity |
High |
Recommended |
No |
Recommended Action |
Drop |
Category |
RPC |
Keywords |
Linux nfs-utils RPC.mountd xlog Off-by-One |
Release Date |
2003/09/18 |
Update Number |
1213 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+ |
RPC: Linux nfs-utils RPC.mountd xlog Off-by-One
This signature detects attempts to exploit a known vulnerability in rpc.mountd that ships with the nfs-utils package for Red Hat Linux versions 6.x. Because the logging mechanism for rpc.mountd contains an off-by-one vulnerability, attackers can send a maliciously crafted request to rpc.mountd to execute arbitrary code or cause a denial of service (DoS).
Extended Description
A remote exploitable buffer overrun vulnerability has been reported in the xlog component of nfs-utils. It is possible to exploit this issue via mountd. It has been reported that exploitation of this issue will most likely result in a denial of service. There is a possibility that this issue could be exploited to run arbitrary code in the context of mountd, which runs as root.
Affected Products
- nfs nfs-utils 0.2.0
- nfs nfs-utils 0.2.1
- nfs nfs-utils 0.3.1
- nfs nfs-utils 0.3.3
- nfs nfs-utils 1.0.0
- nfs nfs-utils 1.0.1
- nfs nfs-utils 1.0.3
- SCO OpenLinux Server 3.1.1
- SCO OpenLinux Workstation 3.1.1
- Sun Cobalt RaQ4 3001R
- Sun Cobalt RaQ XTR
References