xfocus logo xfocus title
首页 焦点原创 安全文摘 安全工具 安全漏洞 焦点项目 焦点论坛 关于我们
English Version
 最近严重漏洞 
Microsoft RPC接口远程任意代码可执行漏洞
Cisco IOS接口不正确处理IPV4包远程拒绝服务漏洞
Microsoft Windows CreateFile API命名管道权限提升漏洞

Solaris NFS lockd远程拒绝服务漏洞


发布时间:2002-10-17
更新时间:2003-01-03
严重程度:
威胁程度:远程拒绝服务
错误类型:设计错误
利用方式:服务器模式

BUGTRAQ ID:5986

受影响系统
Sun Solaris 2.5
Sun Solaris 2.5.1 _x86
Sun Solaris 2.5.1
Sun Solaris 7.0 _x86
Sun Solaris 7.0
Sun Solaris 8.0 _x86
Sun Solaris 8.0
Sun Solaris 9.0
详细描述
Solaris lockd守护程序存在一个拒绝服务漏洞。

远程攻击者可以使Solaris lockd守护程序崩溃产生拒绝服务,合法的NFS连接将不会和目标服务器建立连接。

这个漏洞和bugtraq id为1372的漏洞描述类似。

解决方案
Sun Solaris 2.5:
Sun Solaris 2.5.1 _x86:
     Sun Patch 103641-42
     http://sunsolve.sun.com/pub-cgi/findPatch.pl?patchId=103641&rev=42
     Sun Upgrade 104335-02
     http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert%2F47815
Sun Solaris 2.5.1:
     Sun Patch 103640-42
     http://sunsolve.sun.com/pub-cgi/findPatch.pl?patchId=103640&rev=42
     Sun Upgrade 104334-02
     http://sunsolve.sun.com/pub-cgi/findPatch.pl?patchId=104334&rev=02
Sun Solaris 7.0 _x86:
     Sun Patch 106542-20
     http://sunsolve.sun.com
     Sun Patch 109745-02
     http://sunsolve.sun.com/pub-cgi/findPatch.pl?patchId=109745&rev=02
     Must be used with patch 106542-23 or later
Sun Solaris 7.0:
     Sun Patch 106541-23
     http://sunsolve.sun.com/pub-cgi/findPatch.pl?patchId=106541&rev=23
     Must be combined with patch 109744-02 or later.
     Sun Patch 109744-02
     http://sunsolve.sun.com/pub-cgi/findPatch.pl?patchId=109744&rev=02
     Must be combined with patch 106541-23 or later.
Sun Solaris 8.0 _x86:
     Sun Patch 111322-03
     http://sunsolve.sun.com/pub-cgi/findPatch.pl?patchId=111322&rev=03
     Must be used with patch 109784-02 or later
     Sun Patch 109784-02
     http://sunsolve.sun.com/pub-cgi/findPatch.pl?patchId=109784&rev=02
     Must be used with patch 111322-03 or later
Sun Solaris 8.0:
     Sun Patch 109783-02
     http://sunsolve.sun.com/pub-cgi/findPatch.pl?patchId=109783&rev=02
     Must be used with patch 111321-03 or later
     Sun Patch 111321-03
     http://sunsolve.sun.com/pub-cgi/findPatch.pl?patchId=111321&rev=03
     Must be used with patch 109783-02 or later
Sun Solaris 9.0:
     Sun Patch 113278-01
     http://sunsolve.sun.com/pub-cgi/findPatch.pl?patchId=113278&rev=01
     Must be used with patch 113279-01 or later
     Sun Patch 113279-01
     http://sunsolve.sun.com/pub-cgi/findPatch.pl?patchId=113279&rev=01
     Must be used with patch 113278-01 or later

相关信息
相关资料:http://online.securityfocus.com/archive/1/295695
          http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert%2F47815&zone_32=category%3Asecurity
Copyright © 1998-2003 XFOCUS Team. All Rights Reserved