20CN网络安全小组 - BSD 打印守护进程远程缓冲区溢出漏洞

您当前的位置 >> 首页

BSD 打印守护进程远程缓冲区溢出漏洞

/ns/ld/unix/data/20010909024534.htm

涉及程序：
BSD

描述：
BSD 打印守护进程远程缓冲区溢出漏洞

详细：
发现 BSD 打印守护进程存在远程缓冲区溢出漏洞。该守护进程监听于 TCP 515 端口，缺省状态下它通常是被激活的。

要使攻击成功，远程攻击者需从'/etc/hosts.equiv' 或 '/etc/hosts.lpd' 文件中的主机发起进攻，而且该打印守护进程必须被正确地配置。

利用此漏洞，远程攻击者能取得系统特权。

受影响系统：
BSDI BSD/OS 4.1
BSDI BSD/OS 4.0.1
BSDI BSD/OS 4.0
BSDI BSD/OS 3.1
BSDI BSD/OS 3.0
BSDI BSD/OS 2.0.1
BSDI BSD/OS 2.0
FreeBSD FreeBSD 4.2
FreeBSD FreeBSD 4.1.1
FreeBSD FreeBSD 4.1
FreeBSD FreeBSD 4.0
FreeBSD FreeBSD 3.5.1
FreeBSD FreeBSD 3.5
FreeBSD FreeBSD 3.4
FreeBSD FreeBSD 3.3
FreeBSD FreeBSD 3.2
FreeBSD FreeBSD 3.1
FreeBSD FreeBSD 3.0
FreeBSD FreeBSD 2.2.8
FreeBSD FreeBSD 2.2.6
FreeBSD FreeBSD 2.2.5
FreeBSD FreeBSD 2.2.4
FreeBSD FreeBSD 2.2.3
FreeBSD FreeBSD 2.2.2
FreeBSD FreeBSD 2.2
NetBSD NetBSD 1.5.1
NetBSD NetBSD 1.5
NetBSD NetBSD 1.4.3
NetBSD NetBSD 1.4.2
NetBSD NetBSD 1.4.1
NetBSD NetBSD 1.4
NetBSD NetBSD 1.3.3
NetBSD NetBSD 1.3.2
NetBSD NetBSD 1.3.1
NetBSD NetBSD 1.3
NetBSD NetBSD 1.2.1
NetBSD NetBSD 1.2
NetBSD NetBSD 1.1
NetBSD NetBSD 1.0
OpenBSD OpenBSD 2.9
OpenBSD OpenBSD 2.8
OpenBSD OpenBSD 2.7
OpenBSD OpenBSD 2.6
OpenBSD OpenBSD 2.5
OpenBSD OpenBSD 2.4
OpenBSD OpenBSD 2.3
OpenBSD OpenBSD 2.2
OpenBSD OpenBSD 2.1
OpenBSD OpenBSD 2.0

不受影响系统：
BSDI BSD/OS 4.2

解决方案：
部分发布商提供了补丁，对于没有补丁的用户，建议您暂关闭该项服务或严格控制'/etc/hosts.equiv' , '/etc/hosts.lpd' 中的信任主机数

BSDI BSD/OS 4.1:

BSDI patch 4.1 M410-044
http://www.BSDI.COM/services/support/patches/patches-4.1/M410-044

FreeBSD FreeBSD 4.2:

FreeBSD patch 3.x-4.2 lpd-3.x-4.2.patch
ftp://ftp.freebsd.org/pub/FreeBSD/CERT/patches/SA-01:58/lpd-3.x-4.2.patch

FreeBSD FreeBSD 4.1.1:

FreeBSD patch 3.x-4.2 lpd-3.x-4.2.patch
ftp://ftp.freebsd.org/pub/FreeBSD/CERT/patches/SA-01:58/lpd-3.x-4.2.patch

FreeBSD FreeBSD 4.1:

FreeBSD patch 3.x-4.2 lpd-3.x-4.2.patch
ftp://ftp.freebsd.org/pub/FreeBSD/CERT/patches/SA-01:58/lpd-3.x-4.2.patch

FreeBSD FreeBSD 4.0:

FreeBSD patch 3.x-4.2 lpd-3.x-4.2.patch
ftp://ftp.freebsd.org/pub/FreeBSD/CERT/patches/SA-01:58/lpd-3.x-4.2.patch

FreeBSD FreeBSD 3.5.1:

FreeBSD patch 3.x-4.2 lpd-3.x-4.2.patch
ftp://ftp.freebsd.org/pub/FreeBSD/CERT/patches/SA-01:58/lpd-3.x-4.2.patch

FreeBSD FreeBSD 3.5:

FreeBSD patch 3.x-4.2 lpd-3.x-4.2.patch
ftp://ftp.freebsd.org/pub/FreeBSD/CERT/patches/SA-01:58/lpd-3.x-4.2.patch

FreeBSD FreeBSD 3.4:

FreeBSD patch 3.x-4.2 lpd-3.x-4.2.patch
ftp://ftp.freebsd.org/pub/FreeBSD/CERT/patches/SA-01:58/lpd-3.x-4.2.patch

FreeBSD FreeBSD 3.3:

FreeBSD patch 3.x-4.2 lpd-3.x-4.2.patch
ftp://ftp.freebsd.org/pub/FreeBSD/CERT/patches/SA-01:58/lpd-3.x-4.2.patch

FreeBSD FreeBSD 3.2:

FreeBSD patch 3.x-4.2 lpd-3.x-4.2.patch
ftp://ftp.freebsd.org/pub/FreeBSD/CERT/patches/SA-01:58/lpd-3.x-4.2.patch

FreeBSD FreeBSD 3.1:

FreeBSD patch 3.x-4.2 lpd-3.x-4.2.patch
ftp://ftp.freebsd.org/pub/FreeBSD/CERT/patches/SA-01:58/lpd-3.x-4.2.patch

FreeBSD FreeBSD 3.0:

FreeBSD patch 3.x-4.2 lpd-3.x-4.2.patch
ftp://ftp.freebsd.org/pub/FreeBSD/CERT/patches/SA-01:58/lpd-3.x-4.2.patch