CVE-2001-1124 — Improper Restriction of Operations within the Bounds of a Memory Buffer in HP Hp-ux

3 documents3 sources

Severity

5.0MEDIUMNVD

EPSS

0.8%

top 26.00%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

HP Hp-ux

Timeline

PublishedOct 1

Latest updateApr 30

Description

rpcbind in HP-UX 11.00, 11.04 and 11.11 allows remote attackers to cause a denial of service (core dump) via a malformed RPC portmap requests, possibly related to a buffer overflow.

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

▶NVDhp/hp-ux11.00, 11.04, 11.11+2

Patches

Patch: www.securityfocus.com ↗Patch: www.securityfocus.com ↗

🔴Vulnerability Details

GHSA

GHSA-42hx-mp6j-h8vw: rpcbind in HP-UX 11↗2022-04-30

▶

CVEList

CVE-2001-1124: rpcbind in HP-UX 11↗2002-03-15

▶