Executive Summary

Summary
Title HP Tru64 UNIX running NIS ypserv, Remote Denial of Service (DoS)
Informations
Name HPSBTU02132 SSRT061154 First vendor Publication 2006-07-17
Vendor HP Last vendor Modification 2006-07-17
Severity (Vendor) N/A Revision 1

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score NA
Base Score NA Environmental Score NA
impact SubScore NA Temporal Score NA
Exploitabality Sub Score NA
 
Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:N/C:N/I:N/A:P)
Cvss Base Score 5 Attack Range Network
Cvss Impact Score 2.9 Attack Complexity Low
Cvss Expoit Score 10 Authentication None Required
Calculate full CVSS 2.0 Vectors scores

Detail

A potential vulnerability has been identified with the HP Tru64 UNIX operating system running NIS ypserv. The vulnerability could be remotely exploited to cause a Denial of Service (DoS).

Original Source

Url : http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00724992

OVAL Definitions

Definition Id: oval:org.mitre.oval:def:667
 
Oval ID: oval:org.mitre.oval:def:667
Title: ypserv NIS Server Denial of Service
Description: ypserv NIS server before 2.7 allows remote attackers to cause a denial of service via a TCP client request that does not respond to the server, which causes ypserv to block.
Family: unix Class: vulnerability
Reference(s): CVE-2003-0251
 Version: 4
Platform(s): Red Hat Linux 9
 Product(s): ypserv
Definition Synopsis:

Open Source Vulnerability Database (OSVDB)

Id Description
13401 ypserv NIS Server Opened TCP Connection DoS

Nessus® Vulnerability Scanner

Date Description
2004-07-31 Name : The remote Mandrake Linux host is missing a security update.
File : mandrake_MDKSA-2003-072.nasl - Type : ACT_GATHER_INFO
2004-07-06 Name : The remote Red Hat host is missing a security update.
File : redhat-RHSA-2003-201.nasl - Type : ACT_GATHER_INFO