IRIX rpcbind存在符号连接漏洞发布时间:2002-10-11 更新时间:2002-10-11 严重程度:中 威胁程度:远程拒绝服务 错误类型:访问验证错误 利用方式:服务器模式 BUGTRAQ ID:5889 受影响系统 SGI IRIX 6.5详细描述 IRIX系统中的rpcbind工具存在漏洞。 当以'-w'开关启动rpcbind时,程序会在/tmp目录下搜索注册服务列表,这些文件列表会在rpcbind进程接收到SIGINT和SIGTERM信号时写入。由于rpcbind写文件时没有正确进行符号连接检查,可导致攻击者利用符号连接破坏系统文件。 测试代码 无 解决方案 不使用'-w'选项启动,或者在/etc/config/rpcbind.options不使用这个选项。 补丁下载: SGI IRIX 6.5: SGI Upgrade IRIX 6.5.18 http://www.sgi.com/software/software.html#IRIX SGI IRIX 6.5.1: SGI Upgrade IRIX 6.5.18 http://www.sgi.com/software/software.html#IRIX SGI IRIX 6.5.2: SGI Upgrade IRIX 6.5.18 http://www.sgi.com/software/software.html#IRIX SGI IRIX 6.5.3: SGI Upgrade IRIX 6.5.18 http://www.sgi.com/software/software.html#IRIX SGI IRIX 6.5.4: SGI Upgrade IRIX 6.5.18 http://www.sgi.com/software/software.html#IRIX SGI IRIX 6.5.5: SGI Upgrade IRIX 6.5.18 http://www.sgi.com/software/software.html#IRIX SGI IRIX 6.5.6: SGI Upgrade IRIX 6.5.18 http://www.sgi.com/software/software.html#IRIX SGI IRIX 6.5.7: SGI Upgrade IRIX 6.5.18 http://www.sgi.com/software/software.html#IRIX SGI IRIX 6.5.8: SGI Upgrade IRIX 6.5.18 http://www.sgi.com/software/software.html#IRIX SGI IRIX 6.5.9: SGI Upgrade IRIX 6.5.18 http://www.sgi.com/software/software.html#IRIX SGI IRIX 6.5.10: SGI Upgrade IRIX 6.5.18 http://www.sgi.com/software/software.html#IRIX SGI IRIX 6.5.11: SGI Upgrade IRIX 6.5.18 http://www.sgi.com/software/software.html#IRIX SGI IRIX 6.5.12: SGI Upgrade IRIX 6.5.18 http://www.sgi.com/software/software.html#IRIX SGI IRIX 6.5.13 m: SGI Patch patch4771.tar ftp://patches.sgi.com/support/free/security/patches/ SGI Upgrade IRIX 6.5.18 http://www.sgi.com/software/software.html#IRIX SGI IRIX 6.5.13: SGI Patch patch4772.tar ftp://patches.sgi.com/support/free/security/patches/ SGI Upgrade IRIX 6.5.18 http://www.sgi.com/software/software.html#IRIX SGI IRIX 6.5.14 m: SGI Patch patch4771.tar ftp://patches.sgi.com/support/free/security/patches/ SGI Upgrade IRIX 6.5.18 http://www.sgi.com/software/software.html#IRIX SGI IRIX 6.5.14: SGI Patch patch4772.tar ftp://patches.sgi.com/support/free/security/patches/ SGI Upgrade IRIX 6.5.18 http://www.sgi.com/software/software.html#IRIX SGI IRIX 6.5.15 m: SGI Patch patch4771.tar ftp://patches.sgi.com/support/free/security/patches/ SGI Upgrade IRIX 6.5.18 http://www.sgi.com/software/software.html#IRIX SGI IRIX 6.5.15: SGI Patch patch4772.tar ftp://patches.sgi.com/support/free/security/patches/ SGI Upgrade IRIX 6.5.18 http://www.sgi.com/software/software.html#IRIX SGI IRIX 6.5.16 m: SGI Patch patch4771.tar ftp://patches.sgi.com/support/free/security/patches/ SGI Upgrade IRIX 6.5.18 http://www.sgi.com/software/software.html#IRIX SGI IRIX 6.5.16: SGI Patch patch4772.tar ftp://patches.sgi.com/support/free/security/patches/ SGI Upgrade IRIX 6.5.18 http://www.sgi.com/software/software.html#IRIX SGI IRIX 6.5.17 m: SGI Patch patch4771.tar ftp://patches.sgi.com/support/free/security/patches/ SGI Upgrade IRIX 6.5.18 http://www.sgi.com/software/software.html#IRIX SGI IRIX 6.5.17: SGI Patch patch4772.tar ftp://patches.sgi.com/support/free/security/patches/ SGI Upgrade IRIX 6.5.18 http://www.sgi.com/software/software.html#IRIX 相关信息 参考:http://online.securityfocus.com/advisories/4526 |
