Multiple Vendor RPC Denial of Service Vulnerability
BID:1893
Info
Multiple Vendor RPC Denial of Service Vulnerability
| Bugtraq ID: | 1893 |
| Class: | Design Error |
| CVE: | |
| Remote: | Yes |
| Local: | Yes |
| Published: | Nov 13 1998 12:00AM |
| Updated: | Nov 13 1998 12:00AM |
| Credit: | reported to bugtraq by ga <[email protected]> on Fri Nov 13 1998. Martin Rosa <[email protected]> credited with discovery. Authored by: Patrick Gilbert, [email protected]. |
| Vulnerable: |
Wietse Venema Rpcbind Replacement 2.1 Sun Solaris 2.6 SGI IRIX 6.5.3 f SGI IRIX 6.2 Linux kernel 2.0.34 |
| Not Vulnerable: | |
Exploit / POC
Solution / Fix
Multiple Vendor RPC Denial of Service Vulnerability
Solution:
Filters ports 111 and 32771, and configure the firewall/router to reject packets from outside the local network having an IP address from inside the network. Note that this provides no protection from attacks originating within the internal network.
compile portmapper with -DLOOPBACK_SETUNSET flag. This solution can be difficult to implement because rpc services and kernel config will also require other changes.
Solution:
Filters ports 111 and 32771, and configure the firewall/router to reject packets from outside the local network having an IP address from inside the network. Note that this provides no protection from attacks originating within the internal network.
compile portmapper with -DLOOPBACK_SETUNSET flag. This solution can be difficult to implement because rpc services and kernel config will also require other changes.