Executive Summary



This Alert is flagged as TOP 25 Common Weakness Enumeration from CWE/SANS. For more information, you can read this.
Summary
Title HP-UX Running ONCplus rpc.pcnfsd, Remote Denial of Service (DoS), Increase in Privilege
Informations
Name HPSBUX02523 SSRT100036 First vendor Publication 2010-05-18
Vendor HP Last vendor Modification 2010-05-28
Severity (Vendor) N/A Revision 2

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score NA
Base Score NA Environmental Score NA
impact SubScore NA Temporal Score NA
Exploitabality Sub Score NA
 
Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:N/C:C/I:C/A:C)
Cvss Base Score 10 Attack Range Network
Cvss Impact Score 10 Attack Complexity Low
Cvss Expoit Score 10 Authentication None Required
Calculate full CVSS 2.0 Vectors scores

Detail

A potential security vulnerability has been identified with the NFS/ONCplus rpc.pcnfsd component running on HP-UX. The vulnerability could result in a remote Denial of Service (DoS) and increase in privilege.

Original Source

Url : http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c02115103

CWE : Common Weakness Enumeration

% Id Name
100 % CWE-134 Uncontrolled Format String (CWE/SANS Top 25)

OVAL Definitions

Definition Id: oval:org.mitre.oval:def:11986
 
Oval ID: oval:org.mitre.oval:def:11986
Title: HP-UX Running ONCplus rpc.pcnfsd, Remote Denial of Service (DoS), Increase in Privilege
Description: Format string vulnerability in the _msgout function in rpc.pcnfsd in IBM AIX 6.1, 5.3, and earlier; IBM VIOS 2.1, 1.5, and earlier; NFS/ONCplus B.11.31_09 and earlier on HP HP-UX B.11.11, B.11.23, and B.11.31; and SGI IRIX 6.5 allows remote attackers to execute arbitrary code via an RPC request containing format string specifiers in an invalid directory name.
Family: unix Class: vulnerability
Reference(s): CVE-2010-1039
Version: 11
Platform(s): HP-UX 11
Product(s):
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:12103
 
Oval ID: oval:org.mitre.oval:def:12103
Title: AIX rpc.pcnfsd integer overflow vulnerability.
Description: Format string vulnerability in the _msgout function in rpc.pcnfsd in IBM AIX 6.1, 5.3, and earlier; IBM VIOS 2.1, 1.5, and earlier; NFS/ONCplus B.11.31_09 and earlier on HP HP-UX B.11.11, B.11.23, and B.11.31; and SGI IRIX 6.5 allows remote attackers to execute arbitrary code via an RPC request containing format string specifiers in an invalid directory name.
Family: unix Class: vulnerability
Reference(s): CVE-2010-1039
Version: 5
Platform(s): IBM AIX 5.3
IBM AIX 6.1
Product(s):
Definition Synopsis:

OpenVAS Exploits

Date Description
2010-05-28 Name : HP-UX Update for ONCPlus HPSBUX02523
File : nvt/gb_hp_ux_HPSBUX02523.nasl

Open Source Vulnerability Database (OSVDB)

Id Description
65506 IBM AIX rpc.pcnfsd Unspecified Log Function Crafted RPC Request Remote Overflow

65505 IBM VIOS rpc.pcnfsd Unspecified Log Function Crafted RPC Request Remote Overflow

65504 HP-UX NFS/ONCplus rpc.pcnfsd Unspecified Log Function Crafted RPC Request Rem...

64729 IRIX rpc.pcnfsd Unspecified Log Function Crafted RPC Request Remote Overflow

Information Assurance Vulnerability Management (IAVM)

Date Description
2010-05-27 IAVM : 2010-A-0073 - Multiple Vendor RPC Integer Overflow Vulnerability
Severity : Category I - VMSKEY : V0024202

Nessus® Vulnerability Scanner

Date Description
2013-01-24 Name : The remote AIX host is missing a security patch.
File : aix_IZ73599.nasl - Type : ACT_GATHER_INFO
2013-01-24 Name : The remote AIX host is missing a security patch.
File : aix_IZ73681.nasl - Type : ACT_GATHER_INFO
2013-01-24 Name : The remote AIX host is missing a security patch.
File : aix_IZ73757.nasl - Type : ACT_GATHER_INFO
2013-01-24 Name : The remote AIX host is missing a security patch.
File : aix_IZ73874.nasl - Type : ACT_GATHER_INFO
2013-01-24 Name : The remote AIX host is missing a security patch.
File : aix_IZ75369.nasl - Type : ACT_GATHER_INFO
2013-01-24 Name : The remote AIX host is missing a security patch.
File : aix_IZ75440.nasl - Type : ACT_GATHER_INFO
2013-01-24 Name : The remote AIX host is missing a security patch.
File : aix_IZ75465.nasl - Type : ACT_GATHER_INFO
2013-01-24 Name : The remote AIX host is missing a security patch.
File : aix_IZ73590.nasl - Type : ACT_GATHER_INFO
2010-07-08 Name : The remote AIX host is missing a vendor-supplied security patch.
File : aix_U828006.nasl - Type : ACT_GATHER_INFO
2010-07-08 Name : The remote AIX host is missing a vendor-supplied security patch.
File : aix_U830280.nasl - Type : ACT_GATHER_INFO
2010-06-15 Name : The remote AIX host is missing a vendor-supplied security patch.
File : aix_U834157.nasl - Type : ACT_GATHER_INFO
2010-06-15 Name : The remote AIX host is missing a vendor-supplied security patch.
File : aix_U833953.nasl - Type : ACT_GATHER_INFO
2010-06-15 Name : The remote AIX host is missing a vendor-supplied security patch.
File : aix_U834083.nasl - Type : ACT_GATHER_INFO
2010-05-24 Name : The remote HP-UX host is missing a security-related patch.
File : hpux_PHNE_41023.nasl - Type : ACT_GATHER_INFO
2010-05-24 Name : The remote HP-UX host is missing a security-related patch.
File : hpux_PHNE_41021.nasl - Type : ACT_GATHER_INFO
2010-05-19 Name : The remote AIX host is missing a vendor-supplied security patch.
File : aix_U832864.nasl - Type : ACT_GATHER_INFO
2010-05-19 Name : The remote AIX host is missing a vendor-supplied security patch.
File : aix_U832850.nasl - Type : ACT_GATHER_INFO
2010-05-19 Name : The remote AIX host is missing a vendor-supplied security patch.
File : aix_U830259.nasl - Type : ACT_GATHER_INFO

Alert History

If you want to see full details history, please login or register.
0
Date Informations
2014-02-17 11:38:34
  • Multiple Updates