Xinetd零字符串长度缓冲区溢出漏洞

admin
admin
admin
0
文章
0
评论
2022-07-18 12:08:21 CNNVD漏洞 来源:ZONE.CI 全球网 0 阅读模式

漏洞信息详情

Xinetd零字符串长度缓冲区溢出漏洞

  • CNNVD编号:CNNVD-200112-064
  • 危害等级: 超危
  • CVE编号: CVE-2001-0825
  • 漏洞类型: 缓冲区溢出
  • 发布时间: 2001-12-06
  • 威胁类型: 远程
  • 更新时间: 2005-05-13
  • 厂        商: xinetd
  • 漏洞来源: Discovered by Seba...

漏洞简介

Xinetd 2.1.8.8之前版本的内部字符串处理常规存在缓冲区溢出漏洞。远程攻击者可以借助一个小于等于零的长度参数执行任意命令,该漏洞可以关闭长度检查。

漏洞公告

Note: It has been reported that some vendor fixes may not completely eliminate this vulnerability. Concerned administrators are advised to install the 2.3.3 version now available for download from the Xinetd homepage. Because it is not confirmed which vendor fixes may not completely patch this vulnerability, the existing fixes in our database will not be removed. All administrators are urged to upgrade to version 2.3.3. Xinetd Xinetd 2.1.8 .9pre5

  • Xinetd xinetd-2.3.3.tar.gz http://www.xinetd.org/xinetd-2.3.3.tar.gz
Xinetd Xinetd 2.1.8 .9pre15
  • Conectiva 6.0 i386 xinetd-2.1.8.9pre16-1U60_1cl.i386.rpm ftp://atualizacoes.conectiva.com.br/6.0/RPMS/xinetd-2.1.8.9pre16-1U60_ 1cl.i386.rpm
  • Conectiva 6.0 i386 xinetd-devel-2.1.8.9pre16-1U60_1cl.i386.rpm ftp://atualizacoes.conectiva.com.br/6.0/RPMS/xinetd-devel-2.1.8.9pre16 -1U60_1cl.i386.rpm
  • Conectiva 6.0 i386 xinetd-devel-static-2.1.8.9pre16-1U60_1cl.i386.rpm ftp://atualizacoes.conectiva.com.br/6.0/RPMS/xinetd-devel-static-2.1.8 .9pre16-1U60_1cl.i386.rpm
  • Immunix 7.0 i386 xinetd-2.3.0-1_imnx.i386.rpm http://download.immunix.org/ImmunixOS/7.0/updates/RPMS/xinetd-2.3.0-1_ imnx.i386.rpm
  • Xinetd xinetd-2.3.3.tar.gz http://www.xinetd.org/xinetd-2.3.3.tar.gz
Xinetd Xinetd 2.1.8 .9pre7
  • Xinetd xinetd-2.3.3.tar.gz http://www.xinetd.org/xinetd-2.3.3.tar.gz
Xinetd Xinetd 2.1.8 .9pre12
  • Xinetd xinetd-2.3.3.tar.gz http://www.xinetd.org/xinetd-2.3.3.tar.gz
Xinetd Xinetd 2.1.8 .9pre9
  • Xinetd xinetd-2.3.3.tar.gz http://www.xinetd.org/xinetd-2.3.3.tar.gz
Xinetd Xinetd 2.1.8 .9pre2
  • Xinetd xinetd-2.3.3.tar.gz http://www.xinetd.org/xinetd-2.3.3.tar.gz
Xinetd Xinetd 2.1.8 .9pre11
  • Conectiva 6.0 i386 xinetd-2.1.8.9pre16-1U60_1cl.i386.rpm ftp://atualizacoes.conectiva.com.br/6.0/RPMS/xinetd-2.1.8.9pre16-1U60_ 1cl.i386.rpm
  • Conectiva 6.0 i386 xinetd-devel-2.1.8.9pre16-1U60_1cl.i386.rpm ftp://atualizacoes.conectiva.com.br/6.0/RPMS/xinetd-devel-2.1.8.9pre16 -1U60_1cl.i386.rpm
  • Conectiva 6.0 i386 xinetd-devel-static-2.1.8.9pre16-1U60_1cl.i386.rpm ftp://atualizacoes.conectiva.com.br/6.0/RPMS/xinetd-devel-static-2.1.8 .9pre16-1U60_1cl.i386.rpm
  • Xinetd xinetd-2.3.3.tar.gz http://www.xinetd.org/xinetd-2.3.3.tar.gz
Xinetd Xinetd 2.1.8 .9pre3
  • Xinetd xinetd-2.3.3.tar.gz http://www.xinetd.org/xinetd-2.3.3.tar.gz
Xinetd Xinetd 2.1.8 .9pre4
  • Xinetd xinetd-2.3.3.tar.gz http://www.xinetd.org/xinetd-2.3.3.tar.gz
Xinetd Xinetd 2.1.8 .9pre8
  • Xinetd xinetd-2.3.3.tar.gz http://www.xinetd.org/xinetd-2.3.3.tar.gz
Xinetd Xinetd 2.1.8 .9pre13
  • Xinetd xinetd-2.3.3.tar.gz http://www.xinetd.org/xinetd-2.3.3.tar.gz
Xinetd Xinetd 2.1.8 .8pre3
  • Xinetd xinetd-2.3.3.tar.gz http://www.xinetd.org/xinetd-2.3.3.tar.gz
Xinetd Xinetd 2.1.8 .9pre6
  • Xinetd xinetd-2.3.3.tar.gz http://www.xinetd.org/xinetd-2.3.3.tar.gz
Xinetd Xinetd 2.1.8 .9pre10
  • Xinetd xinetd-2.3.3.tar.gz http://www.xinetd.org/xinetd-2.3.3.tar.gz
Xinetd Xinetd 2.1.8 .9pre1
  • Xinetd xinetd-2.3.3.tar.gz http://www.xinetd.org/xinetd-2.3.3.tar.gz
Xinetd Xinetd 2.1.8 .8
  • Xinetd xinetd-2.3.3.tar.gz http://www.xinetd.org/xinetd-2.3.3.tar.gz
Xinetd Xinetd 2.1.8 .9pre14
  • RedHat 7.0 alpha xinetd-2.3.0-1.71.alpha.rpm ftp://updates.redhat.com/7.0/en/os/alpha/xinetd-2.3.0-1.71.alpha.rpm
  • RedHat 7.0 i386 xinetd-2.3.0-1.71.i386.rpm ftp://updates.redhat.com/7.0/en/os/i386/xinetd-2.3.0-1.71.i386.rpm
  • RedHat 7.1 alpha xinetd-2.3.0-1.71.alpha.rpm ftp://updates.redhat.com/7.1/en/os/alpha/xinetd-2.3.0-1.71.alpha.rpm
  • RedHat 7.1 i386 xinetd-2.3.0-1.71.i386.rpm ftp://updates.redhat.com/7.1/en/os/i386/xinetd-2.3.0-1.71.i386.rpm
  • Xinetd xinetd-2.3.3.tar.gz http://www.xinetd.org/xinetd-2.3.3.tar.gz
Xinetd Xinetd 2.3
  • Conectiva 6.0 xinetd-2.3.2-1U60_1cl.i386.rpm ftp://atualizacoes.conectiva.com.br/6.0/RPMS/xinetd-2.3.2-1U60_1cl.i38 6.rpm
  • Conectiva 6.0 xinetd-devel-2.3.2-1U60_1cl.i386.rpm ftp://atualizacoes.conectiva.com.br/6.0/RPMS/
  • Conectiva 6.0 xinetd-devel-static-2.3.2-1U60_1cl.i386.rpm ftp://atualizacoes.conectiva.com.br/6.0/RPMS/xinetd-devel-static-2.3.2 -1U60_1cl.i386.rpm
  • Conectiva 7.0 xinetd-2.3.2-1U70_1cl.i386.rpm ftp://atualizacoes.conectiva.com.br/7.0/RPMS/xinetd-2.3.2-1U70_1cl.i38 6.rpm
  • Conectiva 7.0 xinetd-devel-2.3.2-1U70_1cl.i386.rpm ftp://atualizacoes.conectiva.com.br/7.0/RPMS/xinetd-devel-2.3.2-1U70_1 cl.i386.rpm
  • Xinetd xinetd-2.3.3.tar.gz

    参考网址

    来源: BID 名称: 2971 链接:http://www.securityfocus.com/bid/2971 来源: REDHAT 名称: RHSA-2001:092 链接:http://www.redhat.com/support/errata/RHSA-2001-092.HTML 来源: CONECTIVA 名称: CLA-2001:406 链接:http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000406 来源: XF 名称: xinetd-zero-length-bo(6804) 链接:http://xforce.iss.net/static/6804.php 来源: IMMUNIX 名称: IMNX-2001-70-029-01 链接:http://download.immunix.org/ImmunixOS/7.0/updates/IMNX-2001-70-029-01

受影响实体

  • Xinetd Xinetd:2.3.1  
  • Xinetd Xinetd:2.3.0  
  • Xinetd Xinetd:2.1.8.9  
  • Xinetd Xinetd:2.1.8.8  

补丁

    暂无

weinxin
特别声明
本站(ZONE.CI)所有文章仅供技术研究,若将其信息做其他用途,由用户承担全部法律及连带责任,本站不承担任何法律及连带责任,请遵守中华人民共和国安全法.
ZONE.CI 全球网 | 安全领域涉猎者-乌云独行地带
咨询加Q:999999999
ZONE.CI 全球网 | 安全领域涉猎者-乌云独行地带
ZONE.CI 全球网 安全领域涉猎者-乌云独行地带
获取本源码
售前咨询加Q:120433200
站媒体网仿《知更鸟》模板
获取本源码 zmt6.com
评论:0   参与:  0