Unisys Clearpath MCP端口扫描拒绝服务漏洞

漏洞信息详情

Unisys Clearpath MCP端口扫描拒绝服务漏洞

• CNNVD编号：CNNVD-200212-388
• 危害等级： 高危
  
  
• CVE编号：
  CVE-2002-2179
  
• 漏洞类型：
  
  
  其他
  
• 发布时间：
  
  2002-12-31
  
• 威胁类型：
  
  
  远程
  
• 更新时间：
  
  2006-03-03
  
• 厂        商：
  
  unisys
• 漏洞来源：
  Discovery credited…

ClearPath MCP环境的动态初始化功能存在漏洞。远程攻击者可以借助使用如nmap的工具扫描TCP端口，从而导致服务拒绝（崩溃）。

The vendor has confirmed this issue and has supplied the following solution:
The customer can either disable the dynamic initialization feature for those ports which are not in use on the system or place a third-party product (like SYNDefender) in front of the ClearPath.

来源: BID
名称: 5863
链接:http://www.securityfocus.com/bid/5863

来源: XF
名称: clearpath-port-scan-dos(10260)
链接:http://www.iss.net/security_center/static/10260.php