Support
Eng
òÕÓ
Company
Home
Services
Solutions
Documentation
News and Events
 
 
 
Knowledgebase
Downloads
Glossary
Ask a Question
Search:     Advanced search
SHALB.com / Security Knowledgebase / Network Security / RPC / dmisd service
server monitoring

dmisd service
Article ID: 11405
Last updated: 27 Jan, 2009
Print
Email to friend
Views: 419
Posted: 22 Jan, 2009
by: Tech Pubs S.
Updated: 27 Jan, 2009
by: Tech Pubs S.

dmisd service
This script is Copyright (C) 2003 Renaud Deraison

FamilyRPC
Plugin ID11405
Bugtraq ID5356
CVE IDCVE-2002-0391

Description:

The dmisd RPC service is running.

This service uses the function xdr_array() of the RPC library.
It turns out that some older versions of the RPC library
are vulnerable to an integer overflow in this function,
which could allow an attacker to gain root privileges on
this host.

*** No security hole regarding this program has been tested, so
*** this might be a false positive.

Solution : We suggest that you disable this service.
See also : http://www.cert.org/advisories/CA-2002-25.html
Risk factor : High
This article was:   Helpful | Not Helpful
Prev   Next
ypupdated service     3270 mapper service

server monitoring

¿ 2010 "SHALB.com" All rights reserved
SHALB Home
Services
Solutions
Documentation
News and Events