HPE Community
Operating System - HP-UX
1820098 Members
3545 Online
109608 Solutions
New Discussion юеВ

RPC security

 
SOLVED
Go to solution
Steve Bear_1
Frequent Advisor

тАО10-09-2003 03:11 AM

тАО10-09-2003 03:11 AM

RPC security

we have recently received security warning for windows servers ( CAN-2003-0528 Microsoft Windows is vulnerable to two buffer overflows, caused by improper handling of Remote Procedure Call (RPC) messages for Distributed Component Object Model (DCOM) activation by the RPCSS service.)

I was just wondering are there any recent scurity issues related to RPC on HPUX 11.11 platform.

Any suggestion?

0 Kudos
Reply
3 REPLIES 3
Brian Bergstrand
Honored Contributor

тАО10-09-2003 03:18 AM

тАО10-09-2003 03:18 AM

Re: RPC security

There was a bug in the RPC server that saw the light of day with the first of these MS RPC holes a few months ago. The RPC server could crash because so many zombie hosts were hitting it looking to propogate the worm, this would cause a DoS on UX. There was a patch released to fix the problem, although I can't remember the # off the top of my head.

HTH.
0 Kudos
Reply
Robert-Jan Goossens
Honored Contributor

тАО10-09-2003 03:23 AM

тАО10-09-2003 03:23 AM

Re: RPC security

Hi Steve,

The latest security bulletin for rpc is from 08-2003, take a look.

http://www5.itrc.hp.com/service/cki/docDisplay.do?docId=HPSBUX0308-272

http://www5.itrc.hp.com/service/cki/secBullArchive.do

Regards,
Robert-Jan.
0 Kudos
Reply
Brian Bergstrand
Honored Contributor

тАО10-09-2003 03:29 AM

тАО10-09-2003 03:29 AM

Solution

Re: RPC security

Found the patches:

Security doc id: HPSBUX0308-274

Patch: PHSS_29645
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.