J-Security Center

Latest Attack Object Updates
  • IDP Daily Update #1545
    posted: 11/19/09
  • NSM Daily Update #1545
    posted: 11/19/09
  • Deep Inspection 5.3r5 and above, 5.4, 6.0 #1545
    posted: 11/19/09
  • Deep Inspection 5.1 and 5.2 #1435
    posted: 11/19/09
  • Deep Inspection 5.0, 5.3r4 and below #1132
    posted: 03/28/08 (04/01/08 for 5.0)
  • Antivirus
    posted: 11/19/09

Title: HP Distributed Computing Environment Buffer Overrun Vulnerability

Severity: CRITICAL

Description:

HP-UX is a UNIX Operating System variant distributed and maintained by HP.

A problem has been identified in the Distributed Computing Environment (DCE) of HP platforms that may allow attackers to deny service to legitimate users.

It is reported by HP that the Distributed Computing Environment implementation distributed with HP platforms contains a buffer overrun vulnerability. It is reported that this issue may be exploited through the RPC interface, through port 135, to the DCE service.

The problem presents itself when data sent to the affected daemon contains a large stub data segment while specifying a small fragment length. Apparently no checks are done to ensure that the data can be stored safely in the specified buffer.

Successful exploitation of this issue will allow an attacker to execute arbitrary code on an affected computer. This code execution would take place within the security context of the affected daemon, which typically runs with superuser privileges.

Though information to make a conclusive relation is not available, it is conjectured that this issue may be related to the recently reported issues in other DCE implementations, such as that in Bugtraq ID 8371.

Affected Products:

  • Compaq OpenVMS 6.2.0 Alpha
  • Compaq OpenVMS 7.3.0 Alpha
  • Compaq OpenVMS 7.3.0-1 Alpha
  • Compaq OpenVMS 7.3.0-2 Alpha
  • Entegrity DCE/DFS for Tru64 Unix 4.1.4
  • Entegrity DCE/DFS for Tru64 Unix 4.1.5
  • Entegrity DCE/DFS for Tru64 Unix 4.1.6
  • Entegrity DCE/DFS for Tru64 Unix 4.2.0
  • Entegrity DCE/DFS for Tru64 Unix 4.2.2
  • Entegrity DCE/DFS for Tru64 Unix 4.3.0
  • HP HP-UX 11.0.0
  • HP HP-UX 11.11.0
  • HP HP-UX 11.23.0

References:

Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.