Vulnerability: Sun Solaris mibiisa Remote Buffer Overflow
Results 1 to 2 of 2

Thread: Vulnerability: Sun Solaris mibiisa Remote Buffer Overflow

  1. #1
    Fastest Thing Alive s0nIc's Avatar
    Join Date
    Sep 2001
    Location
    Sydney
    Posts
    1,584

    Exclamation Vulnerability: Sun Solaris mibiisa Remote Buffer Overflow

    A buffer overflow vulnerability has been identified in mibiisa. The vulnerability is due to an unsafe memory copy operation. Packet fields of excessive length relayed to mibiisa may corrupt the process stack. An attacker may craft a request to overwrite the return address of the affected stack frame with an arbitrary value.


    Remote: Yes

    Exploit: No

    Solution: A workaround is to disable the mibiisa service. After disabling the service, administrators should terminate it if it is currently running.

    Sun has released fixes:


    Sun Solaris 2.6 _x86:

    Sun Patch 106872-18


    Sun Solaris 2.6:

    Sun Patch 106787-18


    Sun Solaris 7.0 _x86:

    Sun Patch 107710-19


    Sun Solaris 7.0:

    Sun Patch 107709-19


    Sun Solaris 8.0 _x86:

    Sun Patch 108870-16


    Sun Solaris 8.0:

    Sun Patch 108869-16

    Source: http://www.xatrix.org/article1595.html

  2. #2
    Senior Member
    Join Date
    Apr 2002
    Posts
    712
    *sigh* That's all I have to say... just *sigh*

    (I knew I didn't use that for a very good reason - aside from the fact that I disable pretty much every single default service unless I know, without a doubt, that I need them)
    \"Windows has detected that a gnat has farted in the general vicinity. You must reboot for changes to take affect. Reboot now?\"

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •