Vulnerability CVE-2013-1950
Published: 2013-07-09

Description:
The svc_dg_getargs function in libtirpc 0.2.3 and earlier allows remote attackers to cause a denial of service (rpcbind crash) via a Sun RPC request with crafted arguments that trigger a free of an invalid pointer.

See advisories in our WLB2 database:
Topic
Author
Date
Med.
libtirpc Invalid pointer free leads to rpcbind daemon crash
Jan iankko Liesk...
22.04.2013

Type:

CWE-399

 (Resource Management Errors)

CVSS2 => (AV:N/AC:M/Au:N/C:N/I:N/A:P)

CVSS Base Score
Impact Subscore
Exploitability Subscore
4.3/10
2.9/10
8.6/10
Exploit range
Attack complexity
Authentication
Remote
Medium
No required
Confidentiality impact
Integrity impact
Availability impact
None
None
Partial
Affected software
Redhat -> Libtirpc 

 References:
https://bugzilla.redhat.com/show_bug.cgi?id=948378
http://rhn.redhat.com/errata/RHSA-2013-0884.html
http://git.infradead.org/users/steved/libtirpc.git/commitdiff/a9f437119d79a438cb12e510f3cadd4060102c9f
Copyright 2024, cxsecurity.com

 

Back to Top