论坛徽章:: 0

电梯直达

1楼 [收藏(0)] [报告]

发表于 2008-02-29 02:24 |只看该作者 |倒序浏览

影响：\n入侵者可以藉此漏洞修改网页、获得该主机管理权。\n事件描述：\n在遭受攻击的UNIX系统上，入侵者常利用下列

rpc.ttdbserverrpc.cmsdrpc.statd/automountdsadmind

程序的BufferOverflow漏洞自远程入侵主机。\n解决方法：\n1.将不必要的RPCservice自/etc/inetd.conf中移除，移除方法为\n(1)编辑/etc/inetd.conf，将不必要的service前面加上\"#\"或直接删除后存盘；\n(2)kill-HUPinetd.pid。\n2.安装修补程序

rpc.statd:OSVersionPatchID___________________SunOS5.6106592-02SunOS5.6_x86106593-02SunOS5.5.1104166-04SunOS5.5.1_x86104167-04SunOS5.5103468-04SunOS5.5_x86103469-05SunOS5.4102769-07SunOS5.4_x86102770-07SunOS5.3102932-05automountd:OSVersionPatchID___________________SunOS5.5.1104654-05SunOS5.5.1_x86104655-05SunOS5.5103187-43SunOS5.5_x86103188-43SunOS5.4101945-61SunOS5.4_x86101946-54SunOS5.3101318-92

档案可至下列URL下载：\nftp://sunsolve.sun.com/pub/patches\nRedHat：\n请参考下列URL：\nhttp://www.redhat.com/support/errata/RHSA-2000-043-03.HTML\nDebian：\n请参考下列URL：\nhttp://www.debian.org/security/2000/20000719a\n(2)rpc.cmsd\nSolaris：\n请依照您的版本安装下列修补程序

SunOSversionPatchID______________________5.7107893-045.7_x86107894-045.6105802-115.6_x86105803-135.5.1104489-105.5.1_x86105496-085.5104428-085.5_x86105495-065.4102734-05

档案可至下列URL下载：\nftp://sunsolve.sun.com/pub/patches\n(3)rpc.ttdbserverd\nSolaris：\n请依照您的版本安装下列修补程序

SunOSversionPatchID______________________5.7107893-045.7_x86107894-045.6105802-115.6_x86105803-135.5.1104489-105.5.1_x86105496-085.5104428-085.5_x86105495-065.4102734-05

档案可至下列URL下载：\nftp://sunsolve.sun.com/pub/patches\n(4)sadmind\nSolaris：\n请依照您的版本安装下列修补程序

OSVersionPatchID___________________SunOS5.7108662-01SunOS5.7_x86108663-01SunOS5.6108660-01SunOS5.6_x86108661-01SunOS5.5.1108658-01SunOS5.5.1_x86108659-01

返回列表

Chinaunix › 论坛 › 备份版区 › 攻防交流区 › 关于国内UNIX主机常见安全漏洞的描述

关于国内UNIX主机常见安全漏洞的描述 [复制链接]