Title: Multiple Microsoft Services for Unix 3.0 Interix SDK Vulnerabilities
Severity: HIGH
Description:
Microsoft Services for Unix (SFU) 3.0 Interix SDK is a development environment used to port Unix applications to the Microsoft Windows Platform. Three vulnerabilities have been reported to affect applications built with SFU 3.0 Interix SDK. The issues are related to the Interix implementation of SunRPC.
The first vulnerability is an integer overflow in the function that allocates memory for an External Data Representation (XDR) array. This vulnerability may be exploited to cause a denial of service or possibly execute arbitrary code. This vulnerability is BID 5356.
The second vulnerability is a denial of service. It is possible for RPC clients to transmit data in fragments of variable size. By sending malformed fragments, it is possible to leave the target server in an unresponsive state. This may be because the server is waiting for a final fragment which the attacker intentionally does not send. When the target server is hung, it will not respond to other clients.
The third vulnerability is also related to handling of client-supplied packet fragments. According to Microsoft, the SunRPC implementation does not correctly check the size of received packets. By transmitting malformed data to a target server, an attacker may create a denial of service condition.
It should be noted that only applications developed using the Interix SDK are vulnerable.
**Note: This database entry is temporary. New vulnerabilities are to be given unique Bugtraq IDs and alerts will be published for each individual issue. This BID will be retired when analysis is complete.
Affected Products:
- Microsoft Services for Unix 3.0.0
References:
- Microsoft: Microsoft Security Bulletin MS02-057
Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.
