Bugtraq mailing list archives

Re: Exploit of rpc.cmsd

From: scw () SEAS UCLA EDU (Stephen C Woods)
Date: Sat, 10 Jul 1999 06:29:38 -0700


105566-06 was installed on our machine that was hit, When I reported it
to Sun I recieved e-mail that they are working on a fresh fix, and it'll
be available 'soon'.   Perhaps this time they'll fix all the buffer
overflows.  Luckly the twerp that went after my machine was a clueless
twit and didn't know what he was about, also the machine was fairly well
protected agains the common forms of attack.

I want to point out that there is a rather fresh 105566-07 for Solaris
2.6 which claims "4230754 Possible buffer overflows in rpc.cmsd" fixed.
There is rather old 103670-03 for Solaris 2.5[.1] which claims "1264389
rpc.cmsd security problem." fixed. Then there is 104976-03 claiming
"1265008 : Solaris 2.x rpc.cmsd vulnerabity" fixed. Are these the ones
you refer to as "patched versions" and "could be problematic"?

Andy.


-----
Stephen C. Woods; UCLA SEASnet; 2567 Boelter hall; LA CA 90095; (310)-825-8614
Finger for public key scw () cirrus seas ucla edu,Internet mail:scw () SEAS UCLA EDU

Current thread:

Exploit of rpc.cmsd Bob Todd (Jul 09)
- Re: Exploit of rpc.cmsd Andy Polyakov (Jul 09)
- Re: Exploit of rpc.cmsd Andy Polyakov (Jul 10)
- Re: Exploit of rpc.cmsd Andy Polyakov (Jul 11)
- Re: Exploit of rpc.cmsd John Hall (Jul 12)
  - Re: Exploit of rpc.cmsd Aleph One (Jul 13)
    - Re: Exploit of rpc.cmsd Casper Dik (Jul 14)
    - Re: Exploit of rpc.cmsd Dan Astoorian (Jul 15)
    - Re: Exploit of rpc.cmsd Casper Dik (Jul 15)
- Re: Exploit of rpc.cmsd John Hall (Jul 12)
- <Possible follow-ups>
- Re: Exploit of rpc.cmsd Stephen C Woods (Jul 10)
- Re: Exploit of rpc.cmsd Casper Dik (Jul 14)