Multiple Vendor RPC Denial of Service Vulnerability

Solution:
Filters ports 111 and 32771, and configure the firewall/router to reject packets from outside the local network having an IP address from inside the network. Note that this provides no protection from attacks originating within the internal network.

compile portmapper with -DLOOPBACK_SETUNSET flag. This solution can be difficult to implement because rpc services and kernel config will also require other changes.



 

Privacy Statement
Copyright 2010, SecurityFocus