ID CVE-2007-0165
Summary Unspecified vulnerability in libnsl in Sun Solaris 8 and 9 allows remote attackers to cause a denial of service (crash) via malformed RPC requests that trigger a crash in rpcbind.
References
Vulnerable Configurations
  • cpe:2.3:o:sun:solaris:9.0:-:sparc
    cpe:2.3:o:sun:solaris:9.0:-:sparc
  • Sun SunOS (Solaris 8) 5.8
    cpe:2.3:o:sun:sunos:5.8
CVSS
Base: 7.8 (as of 10-01-2007 - 09:48)
Impact:
Exploitability:
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
NONE NONE COMPLETE
exploit-db via4
description Sun Solaris 9 RPC Request Denial of Service Vulnerability. CVE-2007-0165. Dos exploit for solaris platform
id EDB-ID:29406
last seen 2016-02-03
modified 2007-01-09
published 2007-01-09
reporter Federico L. Bossi Bonin
source https://www.exploit-db.com/download/29406/
title Sun Solaris 9 RPC Request Denial of Service Vulnerability
nessus via4
  • NASL family Solaris Local Security Checks
    NASL id SOLARIS8_108993.NASL
    description SunOS 5.8: LDAP2 client, libc, libthread a. Date this patch was last updated by Sun : Mar/29/07
    last seen 2016-09-26
    modified 2011-09-18
    plugin id 13308
    published 2004-07-12
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=13308
    title Solaris 8 (sparc) : 108993-67
  • NASL family Solaris Local Security Checks
    NASL id SOLARIS8_X86_108994.NASL
    description SunOS 5.8_x86: LDAP2 client, libc, libthre. Date this patch was last updated by Sun : Mar/30/07
    last seen 2016-09-26
    modified 2011-09-18
    plugin id 13418
    published 2004-07-12
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=13418
    title Solaris 8 (x86) : 108994-67
  • NASL family Solaris Local Security Checks
    NASL id SOLARIS9_X86_113719.NASL
    description SunOS 5.9_x86: libnsl, rpc.nispasswdd patc. Date this patch was last updated by Sun : Jan/05/07
    last seen 2016-09-26
    modified 2011-10-24
    plugin id 13582
    published 2004-07-12
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=13582
    title Solaris 9 (x86) : 113719-21
  • NASL family Solaris Local Security Checks
    NASL id SOLARIS9_113319.NASL
    description SunOS 5.9: libnsl, nispasswdd patch. Date this patch was last updated by Sun : Jan/08/07
    last seen 2016-09-26
    modified 2011-10-24
    plugin id 13535
    published 2004-07-12
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=13535
    title Solaris 9 (sparc) : 113319-27
  • NASL family HP-UX Local Security Checks
    NASL id HPUX_PHNE_37110.NASL
    description s700_800 11.11 ONC/NFS General Release/Performance Patch : A potential security vulnerability has been identified with HP-UX running rpcbind. The vulnerability could be remotely exploited to create a Denial of Service (DoS) .
    last seen 2019-02-21
    modified 2018-07-12
    plugin id 34316
    published 2008-10-01
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=34316
    title HP-UX PHNE_37110 : HP-UX Running rpcbind, Remote Denial of Service (DoS) (HPSBUX02370 SSRT071459 rev.1)
  • NASL family HP-UX Local Security Checks
    NASL id HPUX_PHNE_36982.NASL
    description s700_800 11.23 libnsl cumulative patch : A potential security vulnerability has been identified with HP-UX running rpcbind. The vulnerability could be remotely exploited to create a Denial of Service (DoS) .
    last seen 2019-02-21
    modified 2018-07-12
    plugin id 34315
    published 2008-10-01
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=34315
    title HP-UX PHNE_36982 : HP-UX Running rpcbind, Remote Denial of Service (DoS) (HPSBUX02370 SSRT071459 rev.1)
oval via4
  • accepted 2007-09-27T08:57:46.612-04:00
    class vulnerability
    contributors
    name Pai Peng
    organization Opsware, Inc.
    definition_extensions
    • comment Solaris 8 (SPARC) is installed
      oval oval:org.mitre.oval:def:1539
    • comment Solaris 9 (SPARC) is installed
      oval oval:org.mitre.oval:def:1457
    • comment Solaris 8 (x86) is installed
      oval oval:org.mitre.oval:def:2059
    • comment Solaris 9 (x86) is installed
      oval oval:org.mitre.oval:def:1683
    description Unspecified vulnerability in libnsl in Sun Solaris 8 and 9 allows remote attackers to cause a denial of service (crash) via malformed RPC requests that trigger a crash in rpcbind.
    family unix
    id oval:org.mitre.oval:def:2210
    status accepted
    submitted 2007-08-10T12:25:20.000-04:00
    title A Security Vulnerability in Solaris libnsl(3LIB) may lead to a Denial of Service (DoS) to the rpcbind(1M) Service
    version 32
  • accepted 2014-03-24T04:01:48.792-04:00
    class vulnerability
    contributors
    • name Michael Wood
      organization Hewlett-Packard
    • name Sushant Kumar Singh
      organization Hewlett-Packard
    • name Sushant Kumar Singh
      organization Hewlett-Packard
    description Unspecified vulnerability in libnsl in Sun Solaris 8 and 9 allows remote attackers to cause a denial of service (crash) via malformed RPC requests that trigger a crash in rpcbind.
    family unix
    id oval:org.mitre.oval:def:5920
    status accepted
    submitted 2008-09-22T12:50:21.000-04:00
    title HP-UX Running rpcbind, Remote Denial of Service (DoS)
    version 36
refmap via4
bid 21964
confirm http://support.avaya.com/elmodocs2/security/ASA-2007-036.htm
osvdb 31576
sectrack 1017492
secunia
  • 23700
  • 24056
sunalert 102713
vupen ADV-2007-0110
xf solaris-rpcbind-dos(31366)
Last major update 07-03-2011 - 21:48
Published 09-01-2007 - 19:28
Last modified 30-10-2018 - 12:25
Back to Top