| Vulnerability Name: | CVE-2007-0165 (CCN-31366) | ||||||||||||
| Assigned: | 2007-01-09 | ||||||||||||
| Published: | 2007-01-09 | ||||||||||||
| Updated: | 2018-10-30 | ||||||||||||
| Summary: | Unspecified vulnerability in libnsl in Sun Solaris 8 and 9 allows remote attackers to cause a denial of service (crash) via malformed RPC requests that trigger a crash in rpcbind. | ||||||||||||
| CVSS v3 Severity: | 7.5 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H)
| ||||||||||||
| CVSS v2 Severity: | 7.8 High (CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C) 6.4 Medium (Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C/E:F/RL:OF/RC:C)
6.4 Medium (CCN Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C/E:F/RL:OF/RC:C)
| ||||||||||||
| Vulnerability Type: | CWE-Other | ||||||||||||
| Vulnerability Consequences: | Denial of Service | ||||||||||||
| References: | Source: MITRE Type: CNA CVE-2007-0165 Source: MITRE Type: CNA CVE-2008-4619 Source: CCN Type: HP Security Bulletin HPSBUX02370 SSRT071459 rev.1 HP-UX Running rpcbind, Remote Denial of Service (DoS) Source: OSVDB Type: UNKNOWN 31576 Source: CCN Type: SA23700 Sun Solaris rpcbind Denial of Service Source: SECUNIA Type: UNKNOWN 23700 Source: CCN Type: SA24056 Avaya CMS / IR Sun Solaris rpcbind Denial of Service Source: SECUNIA Type: UNKNOWN 24056 Source: CCN Type: SA32002 HP-UX rpcbind Denial of Service Vulnerability Source: CCN Type: SECTRACK ID: 1017492 Sun Solaris libnsl __inet_taddr2uaddr() Error Lets Remote Users Deny Service Source: SECTRACK Type: UNKNOWN 1017492 Source: CCN Type: Sun Alert ID: 102713 A Security Vulnerability in Solaris libnsl(3LIB) may lead to a Denial of Service (DoS) to the rpcbind(1M) Service Source: SUNALERT Type: Patch, Vendor Advisory 102713 Source: CONFIRM Type: UNKNOWN http://support.avaya.com/elmodocs2/security/ASA-2007-036.htm Source: CCN Type: ASA-2007-036 A Security Vulnerability in Solaris libnsl(3LIB) may lead to a Denial of Service (DoS) to the rpcbind(1M) Service (Sun 102713) Source: CCN Type: NORTEL BULLETIN ID: 2008009217, Rev 1 Nortel Response to Sun Alert 200412 - Solaris Vulnerability May Lead to DoS of rpcbind(1M) Service Source: CCN Type: OSVDB ID: 31576 Solaris libnsl rpcbind Malformed RPC Request Remote DoS Source: CCN Type: OSVDB ID: 48454 HP-UX libnsl rpcbind Malformed RPC Request Remote DoS Source: CCN Type: OSVDB ID: 49474 Solaris RPC Subsystem Crafted Procedure 8 Request Remote DoS Source: BID Type: UNKNOWN 21964 Source: CCN Type: BID-21964 Sun Solaris RPC Request Denial of Service Vulnerability Source: VUPEN Type: UNKNOWN ADV-2007-0110 Source: XF Type: UNKNOWN solaris-rpcbind-dos(31366) Source: XF Type: UNKNOWN solaris-rpcbind-dos(31366) Source: OVAL Type: UNKNOWN oval:org.mitre.oval:def:2210 Source: OVAL Type: UNKNOWN oval:org.mitre.oval:def:5920 | ||||||||||||
| Vulnerable Configuration: | Configuration 1: Configuration CCN 1:  Denotes that component is vulnerable | ||||||||||||
| Oval Definitions | |||||||||||||
| |||||||||||||
| BACK | |||||||||||||