Bugtraq mailing list archives
Re: easy DoS in most RPC apps
From: sstone () UME PHT CO JP (Scott Stone)
Date: Mon, 18 May 1998 01:29:26 +0900
On Sun, 17 May 1998, David LeBlanc wrote:
At 02:35 AM 5/15/98 +0200, Peter van Dijk wrote:Finally, I'm quite sure of this: the bug is in Sun's RPC code. Investigations show Linux, FreeBSD, SunOS, System V and NeXTstep machines are affected, which means we've got a _big_ problem here.If that's the case, then any ports of these utilities running on Windows NT would also exhibit the same problem - we're all running off of pretty much the same Sun ONC RPC code.
The FreeBSD people have already made a patch for this, check their home site. I'm going to attempt to port the patch to Linux, as the base code should be about the same.. the fix is to a couple of rpc-related files in the C libraries. -------------------------------------------------- Scott M. Stone <sstone () pht com, sstone () turbolinux com> <sstone () pht co jp> Linux Developer/Systems Administrator for Pacific HiTech, Inc. http://www.pht.com http://armadillo.pht.co.jp http://www.pht.co.jp http://www.turbolinux.com
Current thread:
- Re: easy DoS in most RPC apps Peter van Dijk (May 10)
- Re: easy DoS in most RPC apps Peter van Dijk (May 12)
- Re: easy DoS in most RPC apps Bill Trost (May 13)
- <Possible follow-ups>
- Re: easy DoS in most RPC apps Peter van Dijk (May 14)
- Re: easy DoS in most RPC apps David LeBlanc (May 17)
- Re: easy DoS in most RPC apps Scott Stone (May 17)
- Re: easy DoS in most RPC apps Bill Paul (May 17)
- Re: easy DoS in most RPC apps Olaf Kirch (May 18)
- simple kde exploit fix David Zhao (May 17)
- Re: simple kde exploit fix Luca Berra (May 18)
- NFS shell Leendert van Doorn (May 18)
- Re: NFS shell Oliver Friedrichs (May 19)
- Re: NFS shell Leendert van Doorn (May 19)
- Re: easy DoS in most RPC apps Scott Stone (May 17)
- Re: easy DoS in most RPC apps Peter van Dijk (May 12)
- Re: simple kde exploit fix Andreas Jellinghaus (May 18)
- DHCP 1.0 and 2.0 SECURITY ALERT! (fwd) Chris Evans (May 18)