SCO UnixWare NFS Mountd Denial of Service Vulnerability
BID:12225
Info
SCO UnixWare NFS Mountd Denial of Service Vulnerability
| Bugtraq ID: | 12225 |
| Class: | Design Error |
| CVE: |
CVE-2004-1039 |
| Remote: | Yes |
| Local: | Yes |
| Published: | Jan 11 2005 12:00AM |
| Updated: | Jul 12 2009 09:27AM |
| Credit: | Discovery is credited to Jonglim Yun <[email protected]>. |
| Vulnerable: |
SCO Unixware 7.1.4 SCO Unixware 7.1.3 SCO Unixware 7.1.1 Avaya Intuity Audix R5 0 |
| Not Vulnerable: | |
Discussion
SCO UnixWare NFS Mountd Denial of Service Vulnerability
SCO UnixWare is reported prone to a denial of service vulnerability. This issue may allow an attacker to exhaust excessive resources on a vulnerable computer.
The vulnerability arises when the mountd service is registered in inetd.conf. A local or remote attacker may initiate a NFS mount service request to trigger this vulnerability.
This issue affects UnixWare 7.1.1, 7.1.3, and 7.1.4.
SCO UnixWare is reported prone to a denial of service vulnerability. This issue may allow an attacker to exhaust excessive resources on a vulnerable computer.
The vulnerability arises when the mountd service is registered in inetd.conf. A local or remote attacker may initiate a NFS mount service request to trigger this vulnerability.
This issue affects UnixWare 7.1.1, 7.1.3, and 7.1.4.
Exploit / POC
SCO UnixWare NFS Mountd Denial of Service Vulnerability
An exploit is not required.
An exploit is not required.
Solution / Fix
SCO UnixWare NFS Mountd Denial of Service Vulnerability
Solution:
The vendor has released advisory SCOSA-2005.1 with fixes to address this issue.
Avaya has released an advisory (ASA-2005-029) stating that Intuity Audix R5 is vulnerable to this issue. This vulnerability is going to be addressed in an upcoming release of Intuity Audix R5. Please see the Avaya advisory at the following location for more information:
http://support.avaya.com/japple/css/japple?temp.groupID=128450&temp.selectedFamily=128451&temp.selectedProduct=154235&temp.selectedBucket=126655&temp.feedbackState=askForFeedback&temp.documentID=215716&PAGE=avaya.css.CSSLvl1Detail&executeTransaction=avaya.css.UsageUpdate()
SCO Unixware 7.1.1
SCO Unixware 7.1.3
SCO Unixware 7.1.4
Solution:
The vendor has released advisory SCOSA-2005.1 with fixes to address this issue.
Avaya has released an advisory (ASA-2005-029) stating that Intuity Audix R5 is vulnerable to this issue. This vulnerability is going to be addressed in an upcoming release of Intuity Audix R5. Please see the Avaya advisory at the following location for more information:
http://support.avaya.com/japple/css/japple?temp.groupID=128450&temp.selectedFamily=128451&temp.selectedProduct=154235&temp.selectedBucket=126655&temp.feedbackState=askForFeedback&temp.documentID=215716&PAGE=avaya.css.CSSLvl1Detail&executeTransaction=avaya.css.UsageUpdate()
SCO Unixware 7.1.1
-
SCO erg712731.711.pkg.Z
ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2005.1/erg712731.711.pkg. Z
SCO Unixware 7.1.3
-
SCO erg712731.pkg.Z
ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2005.1/erg712731.pkg.Z
SCO Unixware 7.1.4
-
SCO erg712731.pkg.Z
ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2005.1/erg712731.pkg.Z
References
SCO UnixWare NFS Mountd Denial of Service Vulnerability
References:
References:
- Vendor Homepage (SCO)
- [NILESA-20050101]: Denial of Service vulnerability due to the mountd bug (Jonglim Yun
)