RPC: Multiple Vendor CDE Calendar Manager Service Buffer Overflow
This signature detects attempts to exploit a known vulnerability against the rpc.cmsd file in CDE database manager. A successful attack can allow an attacker to overflow the buffer and gain root access.
Extended Description
There is a remotely exploitable buffer overflow vulnerability in rpc.cmsd which ships with Sun's Solaris and HP-UX versions 10.20, 10.30 and 11.0 operating systems. The consequence is a remote root compromise.
Affected Products
Caldera openunix
Short Name
RPC:RPC.CMSD:RPC-CMSD-OVERFLOW
Severity
Major
Recommended
False
Recommended Action
Drop
Category
RPC
Keywords
Buffer CDE CVE-1999-0696 Calendar Manager Multiple Overflow Service Vendor bid:524
Release Date
04/22/2003
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3336
Port
RPC/100068
False Positive
Unknown
Vendors
Sun
Hp
Caldera
CVSS Score
10.0