Nekochan Net

Official Chat Channel: #nekochan // irc.nekochan.net
It is currently Thu Oct 23, 2014 9:31 am

All times are UTC - 8 hours [ DST ]


Forum rules


Any posts concerning pirated software or offering to buy/sell/trade commercial software are subject to removal.



Post new topic Reply to topic  [ 1 post ] 
Author Message
Unread postPosted: Thu Aug 12, 2004 4:09 am 
Offline
Moderator
Moderator
User avatar

Joined: Fri May 09, 2003 6:10 am
Posts: 2931
Location: Maryland, USA
SGI has released a security advisory and updated packages to address the multiple IRIX rpc.mountd vulnerabilities.


Description
- -------------------------------------------------------------------------------------
SGI IRIX versions 6.5 through 6.5.22 contain two vulnerabilities in the NFS mount daemon (rpc.mountd).

The first vulnerability allows a remote attacker to issue mount requests on unprivileged ports. This can allow a remote attacker access to privileged information.

The second vulnerability allows a remote attacker to send a specially crafted request that causes rpc.mountd to crash. This results in the suspension of Network File System (NFS) service.

Patches are available.

Impact
- -------------------------------------------------------------------------------------
The first vulnerability can allow a remote attacker to mount arbitrary NFS drives onto a system without superuser-level privileges. This can allow a remote attacker access to privileged information because they can mount files and directories they do not have permissions to access. The attacker can move these files and directories to directories they do have permission to access.

The second vulnerability can allow a remote attacker to crash rpc.mountd and suspend NFS services on the server.

Warning Indicators
- -------------------------------------------------------------------------------------
SGI IRIX versions 6.5 through 6.5.22 are vulnerable.

Technical Information
- -------------------------------------------------------------------------------------
The first vulnerability is a factor even if the -n option is not in use. Successful exploit allows a remote attacker access to any information shared on NFS by mounting the desired directories and files onto a directory they have privileges on.

TruSecure Comments
- -------------------------------------------------------------------------------------
Normally, access to NFS servers and services are restricted to users and hosts on a LAN. For this reason, it is more likely for attacks that exploit these vulnerabilities to be executed by attackers internal to an organization, or that have direct access to the LAN with the vulnerable NFS services, rather than remote attackers from the internet.

Safeguards
- -------------------------------------------------------------------------------------
Apply the patches supplied by the vendor or upgrade to version 6.5.23 of IRIX.

Periodically audit the users and hosts with access to the LAN to minimize the occurrence of localized attacks that come from unknown sources.

Vendor Announcements
- -------------------------------------------------------------------------------------
SGI has released a security advisories at the following FTP links: 20031102-01-P["ftp://patches.sgi.com/support/free/security/advisories/20031102-01-P.asc"] and 20031102-03-P ["ftp://patches.sgi.com/support/free/security/advisories/20031102-03-P.asc"]

Patches/Software
- -------------------------------------------------------------------------------------
SGI has released patches for IRIX for registered users at the following link: IRIX["http://www.sgi.com/support/security/patches.html"]

Alert History
- -------------------------------------------------------------------------------------
Version 1, November 24, 2003, 9:04 AM: SGI IRIX contains two vulnerabilities in rpc.mountd that allow mount requests on unprivileged ports and can cause rpc.mountd to crash. Patches are available.


Product Sets
- -------------------------------------------------------------------------------------
The security vulnerability applies to the following combinations of products.


Primary Products:
- -----------------
[Silicon Graphics, Inc (SGI)] IRIX: 6.5.18f | 6.5.18m | 6.5.19f | 6.5.19m | 6.5.20 | 6.5.20m | 6.5.20f | 6.5.21 | 6.5.21m | 6.5.21f | 6.5.22


Top
 Profile  
 
Display posts from previous:  Sort by  
Post new topic Reply to topic  [ 1 post ] 

All times are UTC - 8 hours [ DST ]


Who is online

Users browsing this forum: No registered users and 1 guest


You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot post attachments in this forum

Search for:
Jump to:  
Powered by phpBB® Forum Software © phpBB Group