xfocus logo xfocus title
首页 焦点原创 安全文摘 安全工具 安全漏洞 焦点项目 焦点论坛 关于我们
English Version
 最近严重漏洞 
Microsoft RPC接口远程任意代码可执行漏洞
Cisco IOS接口不正确处理IPV4包远程拒绝服务漏洞
Microsoft Windows CreateFile API命名管道权限提升漏洞

HP Tru64 C程序库存在多个漏洞


发布时间:2003-04-01
更新时间:2003-04-01
严重程度:
威胁程度:远程管理员权限
错误类型:边界检查错误
利用方式:服务器模式

BUGTRAQ ID:7249

受影响系统
Compaq Tru64 4.0 g PK3 (BL17)
Compaq Tru64 4.0 f PK7 (BL18)
Compaq Tru64 5.1 b PK1 (BL1)
Compaq Tru64 5.1 PK6 (BL20)  
HP Tru64 5.1 a PK4 (BL21)
详细描述
HP Tru64 C程序库的实现存在多个安全漏洞。这些漏洞导致许多程序存在如本地权限提升、拒绝服务、获取远程root权限等问题。

这些漏洞包括:

- SSRT2322 Bind resolver exploit in ISC
- SSRT2384 TCP exploit denies all RPC service
- SSRT2341 calloc() potential overflow
- SSRT2439 xdrmem_getbytes() potential overflow
- SSRT2412 portmapper hang after port scan with C2 enabled

受影响的程序:

/usr/bin/ypmatch
/usr/sbin/traceroute
/usr/sbin/lpc
/usr/bin/lprm
/usr/bin/lpq
/usr/bin/lpr
/usr/lbin/lpd
/usr/bin/binmail
/usr/bin/ipcs
/usr/sbin/quot
/usb/bin/at
/usr/bin/ps
/usr/bin/uux
/usr/bin/uucp
/usr/bin/csh
/usr/bin/rdist
/usr/bin/mh/inc
/usr/bin/mh/msgchk
/usr/sbin/imapd
/usr/bin/deliver
/sbin/.upd..loader
/usr/dt/bin/mailcv
/usr/dt/bin/dtterm
/usr/dt/bin/dtsession
/usr/dt/bin/rpc.ttdbserverd
/usr/bin/X11/dxterm
/usr/bin/X11/dxconsole
/usr/bin/X11/dxpause
/usr/bin/X11/dxsysinfo
/usr/sbin/telnetd
/usr/bin/su
/usr/bin/chsh
/usr/bin/passwd
/usr/bin/chfn
/usr/tcb/bin/dxchpwd

解决方案
Compaq Tru64 4.0 g PK3 (BL17):
     HP Patch t64v40gb17-c0028702-17604-es-20030327.tar
     http://ftp.support.compaq.com/patches/public/unix/v4.0g/t64v40gb17-c0028702-17604-es-20030327.tar
Compaq Tru64 4.0 f PK7 (BL18):
     HP Patch duv40fb18-c0092704-17602-es-20030327.tar
     http://ftp.support.compaq.com/patches/public/unix/v4.0f/duv40fb18-c0092704-17602-es-20030327.tar
Compaq Tru64 5.1 b PK1 (BL1):
     HP Patch t64v51bb1-c0006700-17362-es-20030313.tar
     http://ftp.support.compaq.com/patches/public/unix/v5.1b/t64v51bb1-c0006700-17362-es-20030313.tar
Compaq Tru64 5.1 PK6 (BL20):
     HP Patch t64v51b20-c0173100-17539-es-20030324.tar
     http://ftp.support.compaq.com/patches/public/unix/v5.1/t64v51b20-c0173100-17539-es-20030324.tar
HP Tru64 5.1 a PK4 (BL21):
     HP Patch t64v51ab21-c0108400-17361-es-20030313.tar
     http://ftp.support.compaq.com/patches/public/unix/v5.1a/t64v51ab21-c0108400-17361-es-20030313.tar

相关信息
报告:HP Security Bulletin
相关资料:http://ftp.support.compaq.com/patches/public/unix/v5.1/t64v51b20-c0173100-17539-es-20030324.README  
          http://ftp.support.compaq.com/patches/public/unix/v5.1a/t64v51ab21-c0108400-17361-es-20030313.README
Copyright © 1998-2003 XFOCUS Team. All Rights Reserved