多个供应商Statd缓冲区溢出漏洞漏洞

漏洞信息详情

多个供应商Statd缓冲区溢出漏洞漏洞

• CNNVD编号：CNNVD-199712-005
• 危害等级： 超危
  
  
• CVE编号：
  CVE-1999-0018
  
• 漏洞类型：
  
  
  缓冲区溢出
  
• 发布时间：
  
  1997-12-05
  
• 威胁类型：
  
  
  远程
  
• 更新时间：
  
  2007-07-16
  
• 厂        商：
  
  sun
• 漏洞来源：
  This bug was poste…

Statd存在缓冲区溢出漏洞，可以允许根特权。

Statd is required for use in deployed NFS systems. Therefore if you require NFS on systems which are vulnerable to this attack it is suggested you upgrade your OS or obtain the appropriate patches from your vendor.
Relavant patch information is contained in the reference section via the attached vendor advisories.
Caldera has released a hotfix for the Unixware 7 statd implementation.
SCO Unixware 7.0

• SCO Unixware 7 erg711747a.Z
  ftp://ftp.sco.com/pub/security/unixware/sr848098/erg711747a.Z

SCO Unixware 7.0.1

• SCO Unixware 7 erg711747a.Z
  ftp://ftp.sco.com/pub/security/unixware/sr848098/erg711747a.Z

SCO Unixware 7.1

• SCO Unixware 7 erg711747a.Z
  ftp://ftp.sco.com/pub/security/unixware/sr848098/erg711747a.Z

SCO Unixware 7.1.1

• SCO Unixware 7 erg711747a.Z
  ftp://ftp.sco.com/pub/security/unixware/sr848098/erg711747a.Z

来源: BID
名称: 127
链接:http://www.securityfocus.com/bid/127