安全研究

安全漏洞
IRIX NFS XDR解码远程拒绝服务攻击漏洞

发布日期:2003-08-13
更新日期:2003-08-15

受影响系统:
SGI IRIX nfsd
    - SGI IRIX 6.5.9
    - SGI IRIX 6.5.8
    - SGI IRIX 6.5.7
    - SGI IRIX 6.5.6
    - SGI IRIX 6.5.5
    - SGI IRIX 6.5.4
    - SGI IRIX 6.5.3
    - SGI IRIX 6.5.2
    - SGI IRIX 6.5.19
    - SGI IRIX 6.5.18m
    - SGI IRIX 6.5.18f
    - SGI IRIX 6.5.17 m
    - SGI IRIX 6.5.16
    - SGI IRIX 6.5.15
    - SGI IRIX 6.5.14
    - SGI IRIX 6.5.13
    - SGI IRIX 6.5.12
    - SGI IRIX 6.5.11
    - SGI IRIX 6.5.10
    - SGI IRIX 6.5.1
    - SGI IRIX 6.5
描述:
CVE ID: CVE-2003-0576

IRIX是一款由SGI公司开发和维护的商业性质UNIX操作系统。

IRIX nfsd不正确解析畸形报文请求,远程攻击者可以利用这个漏洞对NFS服务进行拒绝服务攻击。

攻击者可以通过使用特殊构建的报文引起XDR解码错误而引起nfsd产生拒绝服务,此漏洞不需要本地帐户或NFS挂接点,因此可以被远程利用。

目前没有详细漏洞细节提供。

<*来源:SGI Security Advisory
  
  链接:ftp://patches.sgi.com/support/free/security/advisories/20030801-01-P
*>

建议:
厂商补丁:

SGI
---
SGI已经为此发布了一个安全公告(20030801-01-P)以及相应补丁:
20030801-01-P:Denial of Service Vulnerability in NFS on IRIX
链接:ftp://patches.sgi.com/support/free/security/advisories/20030801-01-P

升级到IRIX 6.5.20或者安装正确的补丁:

补丁情况如下:

   系统版本       是否受影响      补丁号         备注
   ----------     -----------     -------      -------------
   IRIX 3.x         未知                        备注 1
   IRIX 4.x         未知                        备注 1
   IRIX 5.x         未知                        备注 1
   IRIX 6.0.x       未知                        备注 1
   IRIX 6.1         未知                        备注 1
   IRIX 6.2         未知                        备注 1
   IRIX 6.3         未知                        备注 1
   IRIX 6.4         未知                        备注 1
   IRIX 6.5          是                         备注 2 & 3
   IRIX 6.5.1        是                         备注 2 & 3
   IRIX 6.5.2        是                         备注 2 & 3
   IRIX 6.5.3        是                         备注 2 & 3
   IRIX 6.5.4        是                         备注 2 & 3
   IRIX 6.5.5        是                         备注 2 & 3
   IRIX 6.5.6        是                         备注 2 & 3
   IRIX 6.5.7        是                         备注 2 & 3
   IRIX 6.5.8        是                         备注 2 & 3
   IRIX 6.5.9        是                         备注 2 & 3
   IRIX 6.5.10       是                         备注 2 & 3
   IRIX 6.5.11       是                         备注 2 & 3
   IRIX 6.5.12       是                         备注 2 & 3
   IRIX 6.5.13       是                         备注 2 & 3      
   IRIX 6.5.14       是                         备注 2 & 3
   IRIX 6.5.15       是                         备注 2 & 3
   IRIX 6.5.16       是                         备注 2 & 3
   IRIX 6.5.17m      是           5229          备注 2, 4 & 5
   IRIX 6.5.17f      是           5230          备注 2, 4 & 5
   IRIX 6.5.18m      是           5240          备注 2, 4 & 5
   IRIX 6.5.18f      是           5241          备注 2, 4 & 5
   IRIX 6.5.19m      是           5227          备注 2, 4 & 5
   IRIX 6.5.19f      是           5228          备注 2, 4 & 5
   IRIX 6.5.20       不          
   IRIX 6.5.21       不

备注:
  
1) 这个版本的IRIX系统已经不再被维护了,请升级到受支持的版本,参看
   http://support.sgi.com/irix/news/index.html#policy 来获得更多的信息。

2) 如果你还未收到一张IRIX 6.5.x for IRIX 6.5的CD,请联系SGI的支持部门,或访问:http://support.sgi.com

3) 升级到IRIX 6.5.20。

4) 升级到IRIX 6.5.20或者安装补丁。

5) 这些补丁也包含一些安全无关的修补。

            ##### Patch File Checksums ####
Filename: README.patch.5227
Algorithm #1 (sum -r): 12931 11 README.patch.5227
Algorithm #2 (sum): 22414 11 README.patch.5227
MD5 checksum: 7ED03B2BE0DC6DE5D33D81339AB14017


Filename: patchSG0005227
Algorithm #1 (sum -r): 11461 5 patchSG0005227
Algorithm #2 (sum): 37091 5 patchSG0005227
MD5 checksum: 6159ACA5DADB447DBAC03E2713B397F9


Filename: patchSG0005227.eoe_sw
Algorithm #1 (sum -r): 09551 8277 patchSG0005227.eoe_sw
Algorithm #2 (sum): 30759 8277 patchSG0005227.eoe_sw
MD5 checksum: E5339A8B3C9231CC8EFD58CB59FEED1C


Filename: patchSG0005227.idb
Algorithm #1 (sum -r): 20594 41 patchSG0005227.idb
Algorithm #2 (sum): 1408 41 patchSG0005227.idb
MD5 checksum: 32BF7447A53E8A9DAD84A2B416674F16


Filename: patchSG0005227.irix_dev_sw
Algorithm #1 (sum -r): 38535 10 patchSG0005227.irix_dev_sw
Algorithm #2 (sum): 12894 10 patchSG0005227.irix_dev_sw
MD5 checksum: D53D8B75C2D7B3A3C925ADCFB35F8B95


Filename: patchSG0005227.nfs_sw
Algorithm #1 (sum -r): 31365 5170 patchSG0005227.nfs_sw
Algorithm #2 (sum): 49085 5170 patchSG0005227.nfs_sw
MD5 checksum: E4F9D5896C4272B81430CF0C8611487C


Filename: README.patch.5228
Algorithm #1 (sum -r): 16002 11 README.patch.5228
Algorithm #2 (sum): 22374 11 README.patch.5228
MD5 checksum: 9ED598FCE24B45D9B821BBED49EF4401


Filename: patchSG0005228
Algorithm #1 (sum -r): 37726 5 patchSG0005228
Algorithm #2 (sum): 23213 5 patchSG0005228
MD5 checksum: 3167AD1850E8F6C2CA50F1679C402315


Filename: patchSG0005228.eoe_sw
Algorithm #1 (sum -r): 16223 8422 patchSG0005228.eoe_sw
Algorithm #2 (sum): 46670 8422 patchSG0005228.eoe_sw
MD5 checksum: EFB7678E25D935BFDF9B8531786FE67A


Filename: patchSG0005228.idb
Algorithm #1 (sum -r): 53530 41 patchSG0005228.idb
Algorithm #2 (sum): 21988 41 patchSG0005228.idb
MD5 checksum: 92B4E031662EEF88415D18A2ABE8CA74


Filename: patchSG0005228.irix_dev_sw
Algorithm #1 (sum -r): 38535 10 patchSG0005228.irix_dev_sw
Algorithm #2 (sum): 12894 10 patchSG0005228.irix_dev_sw
MD5 checksum: D53D8B75C2D7B3A3C925ADCFB35F8B95


Filename: patchSG0005228.nfs_sw
Algorithm #1 (sum -r): 17463 5280 patchSG0005228.nfs_sw
Algorithm #2 (sum): 25872 5280 patchSG0005228.nfs_sw
MD5 checksum: DCEAE822C6F2AE0335987F8D4CB22037


Filename: README.patch.5229
Algorithm #1 (sum -r): 01277 9 README.patch.5229
Algorithm #2 (sum): 828 9 README.patch.5229
MD5 checksum: 27F5BC248785EB885A13CC882BC3546F


Filename: patchSG0005229
Algorithm #1 (sum -r): 35802 2 patchSG0005229
Algorithm #2 (sum): 57891 2 patchSG0005229
MD5 checksum: FC923269FA4B82B7B74C6406982A9BF7


Filename: patchSG0005229.eoe_sw
Algorithm #1 (sum -r): 64586 5941 patchSG0005229.eoe_sw
Algorithm #2 (sum): 16069 5941 patchSG0005229.eoe_sw
MD5 checksum: 566A389D3F36A1398FA7EEC56BF175B9


Filename: patchSG0005229.idb
Algorithm #1 (sum -r): 38401 26 patchSG0005229.idb
Algorithm #2 (sum): 7466 26 patchSG0005229.idb
MD5 checksum: 60B99ECECF97909AEF3F4A2DE88D82F5


Filename: patchSG0005229.irix_dev_sw
Algorithm #1 (sum -r): 34148 1 patchSG0005229.irix_dev_sw
Algorithm #2 (sum): 774 1 patchSG0005229.irix_dev_sw
MD5 checksum: 782988FA4FAC22A5F522D4985B47D6CB


Filename: patchSG0005229.nfs_sw
Algorithm #1 (sum -r): 09009 4240 patchSG0005229.nfs_sw
Algorithm #2 (sum): 65046 4240 patchSG0005229.nfs_sw
MD5 checksum: C8D28197ABBFB214E312BE5474089CFE


Filename: README.patch.5230
Algorithm #1 (sum -r): 12236 9 README.patch.5230
Algorithm #2 (sum): 63420 9 README.patch.5230
MD5 checksum: 12E5B2318D3B3516409D084C27387163


Filename: patchSG0005230
Algorithm #1 (sum -r): 50666 2 patchSG0005230
Algorithm #2 (sum): 59311 2 patchSG0005230
MD5 checksum: 44FE30C482E00898A48FB5C865A63FF3


Filename: patchSG0005230.eoe_sw
Algorithm #1 (sum -r): 29102 6011 patchSG0005230.eoe_sw
Algorithm #2 (sum): 39184 6011 patchSG0005230.eoe_sw
MD5 checksum: 3BEB537E47F3A199311CD8D0B1819D04


Filename: patchSG0005230.idb
Algorithm #1 (sum -r): 05200 26 patchSG0005230.idb
Algorithm #2 (sum): 7102 26 patchSG0005230.idb
MD5 checksum: 3E3AE7ACC124D1789D16E6510C58D9DB


Filename: patchSG0005230.nfs_sw
Algorithm #1 (sum -r): 47262 4333 patchSG0005230.nfs_sw
Algorithm #2 (sum): 29161 4333 patchSG0005230.nfs_sw
MD5 checksum: 08121F4C697F3FF84C3555B05403ECCD


Filename: README.patch.5240
Algorithm #1 (sum -r): 49573 10 README.patch.5240
Algorithm #2 (sum): 6006 10 README.patch.5240
MD5 checksum: 35487EA3FE038B6460A592261C04EFCD


Filename: patchSG0005240
Algorithm #1 (sum -r): 07297 4 patchSG0005240
Algorithm #2 (sum): 50257 4 patchSG0005240
MD5 checksum: 256FFFFC0DD9FD4FB7AABC2016E77E76


Filename: patchSG0005240.eoe_sw
Algorithm #1 (sum -r): 47611 7496 patchSG0005240.eoe_sw
Algorithm #2 (sum): 33432 7496 patchSG0005240.eoe_sw
MD5 checksum: 694361E17A3C8147099E946EBD277A08


Filename: patchSG0005240.idb
Algorithm #1 (sum -r): 06906 26 patchSG0005240.idb
Algorithm #2 (sum): 63464 26 patchSG0005240.idb
MD5 checksum: 5B8066AEB25AE8DC988181B6318FA0FD


Filename: patchSG0005240.irix_dev_sw
Algorithm #1 (sum -r): 38535 10 patchSG0005240.irix_dev_sw
Algorithm #2 (sum): 12894 10 patchSG0005240.irix_dev_sw
MD5 checksum: D53D8B75C2D7B3A3C925ADCFB35F8B95


Filename: patchSG0005240.nfs_sw
Algorithm #1 (sum -r): 40380 3891 patchSG0005240.nfs_sw
Algorithm #2 (sum): 34675 3891 patchSG0005240.nfs_sw
MD5 checksum: 71E454F5DF8B7B231BE5534CEFFC1EC8


Filename: README.patch.5241
Algorithm #1 (sum -r): 12584 10 README.patch.5241
Algorithm #2 (sum): 5979 10 README.patch.5241
MD5 checksum: 4C1EE3B73CDD4851D06E73BBB21D65D1


Filename: patchSG0005241
Algorithm #1 (sum -r): 05691 5 patchSG0005241
Algorithm #2 (sum): 13971 5 patchSG0005241
MD5 checksum: 5C6423A1D130E749E6644CDE3CD73FF3


Filename: patchSG0005241.eoe_sw
Algorithm #1 (sum -r): 00113 7607 patchSG0005241.eoe_sw
Algorithm #2 (sum): 34258 7607 patchSG0005241.eoe_sw
MD5 checksum: 5596F7572B50139B776BF011C70E82FC


Filename: patchSG0005241.idb
Algorithm #1 (sum -r): 22072 26 patchSG0005241.idb
Algorithm #2 (sum): 63480 26 patchSG0005241.idb
MD5 checksum: 3CC8B8E45D008D213B8CB84034675509


Filename: patchSG0005241.irix_dev_sw
Algorithm #1 (sum -r): 38535 10 patchSG0005241.irix_dev_sw
Algorithm #2 (sum): 12894 10 patchSG0005241.irix_dev_sw
MD5 checksum: D53D8B75C2D7B3A3C925ADCFB35F8B95


Filename: patchSG0005241.nfs_sw
Algorithm #1 (sum -r): 09049 3954 patchSG0005241.nfs_sw
Algorithm #2 (sum): 32772 3954 patchSG0005241.nfs_sw
MD5 checksum: B28A5B503F0B5C85D62C76A666667685

浏览次数:3688
严重程度:0(网友投票)
本安全漏洞由绿盟科技翻译整理,版权所有,未经许可,不得转载
绿盟科技给您安全的保障
关于我们
公司介绍
公司荣誉
公司新闻
联系我们
公司总部
分支机构
海外机构
快速链接
绿盟云
绿盟威胁情报中心NTI
技术博客