[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Is there a known rpc.statd buffer overflow?



On Wed, Nov 09, 2005 at 10:28:53AM -0500, Kevin B. McCarty wrote:
> I received the following (see below) in an email from logcheck on my
> home desktop running Sarge.  Looks like an attempt to cause a buffer
> overflow in rpc.statd.  System logs don't include anything else that
> looks suspicious.

That's a *really* ancient bug.  It was fixed long before woody (yes,
woody) was released.

It is pretty amazing that such ancient worms are still in the wild...
I'm almost surprised that we aren't still seeing occasional signs of the
Morris Worm trying to propagate.  ;)

noah

Attachment: signature.asc
Description: Digital signature


Reply to: