NFS Buffer Overflow

This protocol anomaly is an NFS message with data buffer that exceeds the user-defined maximum. The default data buffer maximum is 8096; you can change this setting in the Sensor Settings Rulebase>Protocol Thresholds and Configuration>NFS>Maximum buffer length for read/write.

Extended Description

A protocol anomaly exists when an RPC NFS message contains data that exceeds the specified length. Some NFS implementations may be vulnerable in how they process such unusual exception conditions. The security flaws in these products may be exploited to cause a denial of service or some other attack.

Short Name
NFS:OVERFLOW:BUF-OVERFLOW
Severity
Major
Recommended
False
Recommended Action
None
Category
NFS
Release Date
04/22/2003
Supported Platforms

srx-branch-12.3

srx-19.3

srx-branch-19.3

vsrx3bsd-19.2

srx-branch-19.4

vsrx-19.4

mx-12.3

mx-19.4

vmx-19.4

mx-19.3

vsrx3bsd-19.4

srx-19.4

vsrx-12.3

vmx-19.3

vsrx-19.2

srx-12.3

Sigpack Version
3324
False Positive
Unknown

Found a potential security threat?