Users login

Create an account »

JOIN XATRIX

Users login

Home » Hacking News » Sun XDR library integer overflow

Sun XDR library integer overflow

by Mario Miri on April 8th, 2003 Sun XDR library xdrmem_getbytes() function has an integer overflow bug. This results in possibility of denial of service attacks on application implementing this function.


Vulnerable:
Cray UNICOS 6.0 E
Cray UNICOS 6.0
Cray UNICOS 6.1
Cray UNICOS 7.0
Cray UNICOS 8.0
Cray UNICOS 8.3
Cray UNICOS 9.0
Cray UNICOS 9.0.2 .5
Cray UNICOS 9.2 .4
Cray UNICOS 9.2
diet libc 0.12
diet libc 0.15
diet libc 0.16
diet libc 0.17
diet libc 0.18
diet libc 0.19
FreeBSD 4.0
FreeBSD 4.1
FreeBSD 4.1.1 -STABLE
FreeBSD 4.1.1 -RELEASE
FreeBSD 4.1.1
FreeBSD 4.2 -STABLE
FreeBSD 4.2 -RELEASE
FreeBSD 4.2
FreeBSD 4.3 -STABLE
FreeBSD 4.3 -RELEASE
FreeBSD 4.3
FreeBSD 4.4 -STABLE
FreeBSD 4.4
FreeBSD 4.5 -STABLE
FreeBSD 4.5 -RELEASE
FreeBSD 4.5
FreeBSD 4.6 -STABLE
FreeBSD 4.6 -RELEASE
FreeBSD 4.6
FreeBSD 4.6.2
FreeBSD 4.7 -STABLE
FreeBSD 4.7 -RELEASE
FreeBSD 4.7
FreeBSD 5.0
GNU glibc 2.1
GNU glibc 2.1.1
GNU glibc 2.1.2
GNU glibc 2.1.3
GNU glibc 2.2
GNU glibc 2.2.1
GNU glibc 2.2.2
GNU glibc 2.2.3
GNU glibc 2.2.4
GNU glibc 2.2.5
GNU glibc 2.3
GNU glibc 2.3.1
GNU glibc 2.3.2
HP HP-UX 10.20 Series 800
HP HP-UX 10.20 Series 700
HP HP-UX 10.20
HP HP-UX 10.24
HP HP-UX 11.0 4
HP HP-UX 11.0
HP HP-UX 11.11
HP HP-UX 11.20
HP HP-UX 11.22
IBM AIX 4.3.3
IBM AIX 5.1
IBM AIX 5.2
MIT Kerberos 5 1.1.1
MIT Kerberos 5 1.2
MIT Kerberos 5 1.2.1
MIT Kerberos 5 1.2.2
MIT Kerberos 5 1.2.3
MIT Kerberos 5 1.2.4
MIT Kerberos 5 1.2.5
MIT Kerberos 5 1.2.6
MIT Kerberos 5 1.2.7
NetBSD 1.4
NetBSD 1.4.1
NetBSD 1.4.2
NetBSD 1.4.3
NetBSD 1.5
NetBSD 1.5.1
NetBSD 1.5.2
NetBSD 1.5.3
NetBSD 1.6
OpenAFS 1.0
OpenAFS 1.0.1
OpenAFS 1.0.2
OpenAFS 1.0.3
OpenAFS 1.0.4 a
OpenAFS 1.0.4
OpenAFS 1.1
OpenAFS 1.1.1 a
OpenAFS 1.1.1
OpenAFS 1.2
OpenAFS 1.2.1
OpenAFS 1.2.2 b
OpenAFS 1.2.2 a
OpenAFS 1.2.2
OpenAFS 1.2.3
OpenAFS 1.2.4
OpenAFS 1.2.5
OpenAFS 1.2.6
OpenAFS 1.3
OpenAFS 1.3.1
OpenAFS 1.3.2
OpenBSD 2.0
OpenBSD 2.1
OpenBSD 2.2
OpenBSD 2.3
OpenBSD 2.4
OpenBSD 2.5
OpenBSD 2.6
OpenBSD 2.7
OpenBSD 2.8
OpenBSD 2.9
OpenBSD 3.0
OpenBSD 3.1
OpenBSD 3.2
SGI IRIX 6.5
SGI IRIX 6.5.1
SGI IRIX 6.5.2 m
SGI IRIX 6.5.2 f
SGI IRIX 6.5.2
SGI IRIX 6.5.3 m
SGI IRIX 6.5.3 f
SGI IRIX 6.5.3
SGI IRIX 6.5.4 m
SGI IRIX 6.5.4 f
SGI IRIX 6.5.4
SGI IRIX 6.5.5 m
SGI IRIX 6.5.5 f
SGI IRIX 6.5.5
SGI IRIX 6.5.6 m
SGI IRIX 6.5.6 f
SGI IRIX 6.5.6
SGI IRIX 6.5.7 m
SGI IRIX 6.5.7 f
SGI IRIX 6.5.7
SGI IRIX 6.5.8 m
SGI IRIX 6.5.8 f
SGI IRIX 6.5.8
SGI IRIX 6.5.9 m
SGI IRIX 6.5.9 f
SGI IRIX 6.5.9
SGI IRIX 6.5.10 m
SGI IRIX 6.5.10 f
SGI IRIX 6.5.10
SGI IRIX 6.5.11 m
SGI IRIX 6.5.11 f
SGI IRIX 6.5.11
SGI IRIX 6.5.12 m
SGI IRIX 6.5.12 f
SGI IRIX 6.5.12
SGI IRIX 6.5.13 m
SGI IRIX 6.5.13 f
SGI IRIX 6.5.13
SGI IRIX 6.5.14 m
SGI IRIX 6.5.14 f
SGI IRIX 6.5.14
SGI IRIX 6.5.15 m
SGI IRIX 6.5.15 f
SGI IRIX 6.5.15
SGI IRIX 6.5.16 m
SGI IRIX 6.5.16 f
SGI IRIX 6.5.16
SGI IRIX 6.5.17 m
SGI IRIX 6.5.17 f
SGI IRIX 6.5.17
SGI IRIX 6.5.18 m
SGI IRIX 6.5.18 f
SGI IRIX 6.5.18
SGI IRIX 6.5.19
SGI IRIX 6.5.20
Sun Solaris 2.5.1 _x86
Sun Solaris 2.5.1
Sun Solaris 2.6 _x86
Sun Solaris 2.6
Sun Solaris 7.0 _x86
Sun Solaris 7.0
Sun Solaris 8.0 _x86
Sun Solaris 8.0
Sun Solaris 9.0 _x86
Sun Solaris 9.0


Solution:
Most software vendors have released patches and fixes for this issue. Check your application/OS distributors site for details.


Discovered by:
Riley Hassell of eEye


Newsletter signup

Signup to our monthly newsletter and stay in touch with IT news!

Free E-books

We've got ebooks! But they're not online. :( Please give us a few days to bring downloads back.

Contact

Have something to say or just wanna drop us a line? Please keep this in mind: to spam, we reply with spam.

Contact us »