HPE Community
Operating System - HP-UX
1846549 Members
2346 Online
110256 Solutions
New Discussion

CDE rpc.cmsd server and exploitable buffer overflow

 
SOLVED
Go to solution
Debra L. Benavidez
Occasional Contributor

‎10-19-2000 04:02 AM

‎10-19-2000 04:02 AM

CDE rpc.cmsd server and exploitable buffer overflow

During a security scan of my servers the following error was reported:
"CDE rpc.cmsd server contains a remotely exploitable buffer overflow."

The description was that "a remotely exploitable buffer overflow in the CDE database manager rpc.cmsd could allow a remote attacker to gain root privileges on vulnerable machines. The Calendar Manager Service daemon is used as an appointment and resource-scheduler with clients such as Calendar Manager in Openwindows, and Calendar in CDE."

I loaded the CDE Runtime Sep2000 patch and its dependencies to try to correct the problem, but the scan is still reporting this vulnerability.

Any suggestions? TIA
0 Kudos
Reply
4 REPLIES 4
Andreas Voss
Honored Contributor

‎10-19-2000 04:12 AM

‎10-19-2000 04:12 AM

Solution

Re: CDE rpc.cmsd server and exploitable buffer overflow

Hi,

csmd is started from inetd.
If you're not using the calendar comment the cmsd line in /etc/inetd.conf

Regards
Reply
Alex Glennie
Honored Contributor

‎10-19-2000 04:36 AM

‎10-19-2000 04:36 AM

Re: CDE rpc.cmsd server and exploitable buffer overflow

I'm not so sure of this approach, I had a customer only last week had this done ... amongst other things I may add, the result was all users were unable to login. In his case though users home directories were nfs mounted.

Give it a go, if you encounter problems you will know why at least. I see if I can find an official answer.
Reply
Alex Glennie
Honored Contributor

‎10-19-2000 04:41 AM

‎10-19-2000 04:41 AM

Re: CDE rpc.cmsd server and exploitable buffer overflow

 
0 Kudos
Reply
Debra L. Benavidez
Occasional Contributor

‎10-19-2000 10:27 AM

‎10-19-2000 10:27 AM

Re: CDE rpc.cmsd server and exploitable buffer overflow

Thank you for your responses! I commented out the cmsd entry in the /etc/inetd.conf, rebooted the servers, and ensured the users could sign on. The vulnerability scan was run and reported no errors. Thank you!!!
0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.