This site is deprecated. Please
CLICK HERE for latest updates
Short Name |
DNS:OVERFLOW:SPARC-TCP
|
Severity |
Critical
|
Recommended |
No
|
Recommended Action |
Drop
|
Category |
DNS
|
Keywords |
SPARC Buffer Overflow (TCP)
|
Release Date |
2003/04/22
|
Update Number |
1213
|
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+
|
DNS: SPARC Buffer Overflow (TCP)
This signature detects attempts to exploit a known vulnerability against Sparc systems. Attackers can send maliciously crafted packets to TCP/53, to overflow the buffer and gain root access.
Extended Description
The libc library includes functions which perform DNS lookups. A buffer overflow vulnerability has been reported in versions of libc used by some operating systems. In particular, FreeBSD, NetBSD, OpenBSD and GNU glibc have been reported to suffer from this issue.
The vulnerable code is related to DNS queries. It may be possible for a malicious DNS server to provide a response which will exploit this vulnerability, resulting in the execution of arbitrary code as the vulnerable process. The consequences of exploitation will be highly dependant on the details of individual applications using libc.
Affected Products
- Astaro security_linux 2.0.0 16
- Astaro security_linux 2.0.0 23
- Astaro security_linux 2.0.0 24
- Astaro security_linux 2.0.0 25
- Astaro security_linux 2.0.0 26
- Cray unicos 8.0.0
- Cray unicos 8.3.0
- Cray unicos 9.0.0
- Cray unicos 9.0.2 .5
- Cray unicos 9.2.0
- Cray unicos 9.2.0 .4
- Freebsd freebsd 4.3.0
- Freebsd freebsd 4.3.0 -RELEASE
- Freebsd freebsd 4.3.0 -RELENG
- Freebsd freebsd 4.3.0 -STABLE
- Freebsd freebsd 4.4.0
- Freebsd freebsd 4.4.0 -RELENG
- Freebsd freebsd 4.4.0 -STABLE
- Freebsd freebsd 4.5.0
- Freebsd freebsd 4.5.0 -RELEASE
- Freebsd freebsd 4.5.0 -STABLE
- Freebsd freebsd 4.6.0
- Freebsd freebsd 4.6.0 -RELEASE
- Freebsd freebsd 5.0.0
- Freebsd freebsd 5.0.0 Alpha
- Gnu glibc 2.0.0
- Gnu glibc 2.0.1
- Gnu glibc 2.0.2
- Gnu glibc 2.0.3
- Gnu glibc 2.0.4
- Gnu glibc 2.0.5
- Gnu glibc 2.0.6
- Gnu glibc 2.1.0
- Gnu glibc 2.1.1
- Gnu glibc 2.1.1 -6
- Gnu glibc 2.1.2
- Gnu glibc 2.1.3
- Gnu glibc 2.1.3 -10
- Gnu glibc 2.1.9 And Greater
- Gnu glibc 2.2.0
- Gnu glibc 2.2.1
- Gnu glibc 2.2.2
- Gnu glibc 2.2.3
- Gnu glibc 2.2.4
- Gnu glibc 2.2.5
- Hp color_laserjet_4600
- Hp colour_laserjet_4550
- Hp digital_sender_9100c
- Hp hp-ux 10.10.0
- Hp hp-ux 10.20.0
- Hp hp-ux 10.24.0
- Hp hp-ux 11.0.0
- Hp hp-ux 11.0.0 4
- Hp hp-ux 11.11.0
- Hp hp-ux 11.22.0
- Hp jetdirect_j4167a
- Hp jetdirect_j4169a
- Hp jetdirect_j6035a
- Hp jetdirect_j6038a
- Hp jetdirect_j6039a
- Hp jetdirect_j6042a
- Hp jetdirect_j6057a
- Hp jetdirect_j6058a
- Hp jetdirect_j6061a
- Hp laserjet_4100
- Hp laserjet_4100mfp
- Hp laserjet_9000mfp
- Ibm aix 4.3.0
- Ibm aix 5.1
- Isc bind 4.9.0
- Isc bind 4.9.3
- Isc bind 4.9.4
- Isc bind 4.9.5
- Isc bind 4.9.6
- Isc bind 4.9.7
- Isc bind 4.9.8
- Isc bind 8.1.0
- Isc bind 8.1.1
- Isc bind 8.1.2
- Isc bind 8.2.0
- Isc bind 8.2.1
- Isc bind 8.2.2
- Isc bind 8.2.2 P1
- Isc bind 8.2.2 P2
- Isc bind 8.2.2 P3
- Isc bind 8.2.2 P4
- Isc bind 8.2.2 P5
- Isc bind 8.2.2 P6
- Isc bind 8.2.2 P7
- Isc bind 8.2.3
- Isc bind 8.2.4
- Isc bind 8.2.5
- Isc bind 9.2.0
- Isc bind 9.2.1
- Netbsd netbsd 1.4.0
- Netbsd netbsd 1.4.0 Alpha
- Netbsd netbsd 1.4.0 arm32
- Netbsd netbsd 1.4.0 SPARC
- Netbsd netbsd 1.4.0 x86
- Netbsd netbsd 1.4.1
- Netbsd netbsd 1.4.1 Alpha
- Netbsd netbsd 1.4.1 arm32
- Netbsd netbsd 1.4.1 sh3
- Netbsd netbsd 1.4.1 SPARC
- Netbsd netbsd 1.4.1 x86
- Netbsd netbsd 1.4.2
- Netbsd netbsd 1.4.2 Alpha
- Netbsd netbsd 1.4.2 arm32
- Netbsd netbsd 1.4.2 SPARC
- Netbsd netbsd 1.4.2 x86
- Netbsd netbsd 1.4.3
- Netbsd netbsd 1.5.0
- Netbsd netbsd 1.5.0 Sh3
- Netbsd netbsd 1.5.0 X86
- Netbsd netbsd 1.5.1
- Netbsd netbsd 1.5.2
- Netbsd netbsd 1.5.3
- Openbsd openbsd 2.7.0
- Openbsd openbsd 2.8.0
- Openbsd openbsd 2.9.0
- Openbsd openbsd 3.0
- Openbsd openbsd 3.1
- Sco open_server 5.0.5
- Sco open_server 5.0.6
- Sun solaris 2.5.1
- Sun solaris 2.5.1_x86
- Sun solaris 2.6
- Sun solaris 2.6_x86
- Sun solaris 7.0
- Sun solaris 7.0_x86
- Sun solaris 8 Sparc
- Sun solaris 8 X86
- Sun solaris 9 Sparc
References