首页焦点原创安全文摘安全工具安全漏洞焦点项目焦点论坛关于我们

English Version

最近严重漏洞

Microsoft RPC接口远程任意代码可执行漏洞

Cisco IOS接口不正确处理IPV4包远程拒绝服务漏洞

Microsoft Windows CreateFile API命名管道权限提升漏洞

HP Tru64 IGMP拒绝服务攻击漏洞

发布时间：2002-11-13
更新时间：2002-11-24
严重程度：高
威胁程度：远程拒绝服务
错误类型：设计错误
利用方式：物理接触

BUGTRAQ ID：6175

受影响系统

Compaq Tru64 4.0 g PK3 (BL17)
Compaq Tru64 4.0 f PK7 (BL18)
Compaq Tru64 5.0 a PK3 (BL17)
Compaq Tru64 5.1 a PK3 (BL3)
Compaq Tru64 5.1 PK5 (BL19)

详细描述
Tru64 Unix在处理IGMP包的时候存在拒绝服务攻击漏洞。

该漏洞没有技术细节，可以参考：http://online.securityfocus.com/bid/5020

测试代码
无

解决方案
Compaq Tru64 4.0 g PK3 (BL17):

HP Patch t64v40gb17-c0021700-15804-es-20021025.tar
http://ftp.support.compaq.com/patches/public/unix/v4.0g/t64v40gb17-c0021700-15804-es-20021025.tar
It appears this fix is not available at this time, but will be available shortly.

Compaq Tru64 4.0 f PK7 (BL18):

HP Patch duv40fb18-c0084500-15850-es-20021030.tar
http://ftp.support.compaq.com/patches/public/unix/v4.0f/duv40fb18-c0084500-15850-es-20021030.tar
It appears this fix is not available at this time, but will be available shortly.

Compaq Tru64 5.0 a PK3 (BL17):

HP Patch tcv50ab17-c0005202-15352-es-20020905.tar
http://ftp.support.compaq.com/patches/public/unix/v5.0a/tcv50ab17-c0005202-15352-es-20020905.tar

Compaq Tru64 5.1 a PK3 (BL3):

HP Patch t64v51ab3-c0076000-15793-es-20021025.tar
http://ftp.support.compaq.com/patches/public/unix/v5.1a/t64v51ab3-c0076000-15793-es-20021025.tar

Compaq Tru64 5.1 PK5 (BL19):

HP Patch t64v51b19-c0153600-15796-es-20021025.tar
http://ftp.support.compaq.com/patches/public/unix/v5.1/t64v51b19-c0153600-15796-es-20021025.tar

相关信息
参考：http://ftp.support.compaq.com/patches/public/unix/v5.1a/t64v51ab3-c0076000-15793-es-20021025.README