12866 : SCO UnixWare mountd Multiple Process Creation DoS
Printer | http://osvdb.org/12866 | Email This | Edit Vulnerability

Views This Week

Views All Time

Info

Last Modified

10 months ago

Percent Complete

100%

Disclosure

Jan 11, 2005

Discovery

Unknown

Dates

Exploit

Jan 11, 2005

Solution

Unknown

Description

SCO UnixWare contains a flaw that may allow a remote denial of service. The issue is triggered when mountd is run by inetd which may allow an attacker to create multiple mountd processes by issuing multiple NFS related mount requests, consuming memory resources which may result in loss of availability for the system.

Classification

Location: Remote/Network Access Required
Attack Type: Denial of Service
Impact: Loss of Availability
Exploit: Exploit Available
Disclosure: OSVDB Verified

Solution

Currently, there are no known workarounds or upgrades to correct this issue. However, SCO has released a patch to address this vulnerability.

Products

SCO Group, Inc.	UnixWare	7.1.1
		7.1.3
		7.0.1
		7.1.4

References

Secunia Advisory ID: 13805 14088
CVE ID: 2004-1039 (see also: NVD)
Other Advisory URL: ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2005.1/SCOSA-2005.1.txt
Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2005-01/0118.html

Credit

Yun Jonglim - abcnilesoft.co.kr - NileSOFT LTD.

Blogs

Provided by Technorati

None found at this time

Comments

Add Comment Hide Add Comment

No Comments.

DONATE NOW!

User Status

Account
- Login
- Sign-Up

Quick Searches

Views This Week

Views All Time

Info

Last Modified

Percent Complete

Disclosure

Discovery

Dates

Exploit

Solution

Description

Classification

Solution

Products

SCO Group, Inc.

UnixWare

References

Credit

Blogs

Comments