CVE-2008-4619
published 2008-10-21CVE-2008-4619: The RPC subsystem in Sun Solaris 9 allows remote attackers to cause a denial of service (daemon crash) via a crafted request to procedure 8 in program 100000…
PriorityP348critical10CVSS 2.0
AVNACLAuNCCICAC
EXPLOIT
EPSS
11.99%
95.6th percentile
The RPC subsystem in Sun Solaris 9 allows remote attackers to cause a denial of service (daemon crash) via a crafted request to procedure 8 in program 100000 (rpcbind), related to the XDR_DECODE operation and the taddr2uaddr function. NOTE: this might be a duplicate of CVE-2007-0165.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| sun | sunos | — | — |
CVSS provenance
nvdv2.010.0CRITICALAV:N/AC:L/Au:N/C:C/I:C/A:C
vendor_redhat7.8HIGH
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-fcfq-3ccf-xx7r: The RPC subsystem in Sun Solaris 9 allows remote attackers to cause a denial of service (daemon crash) via a crafted request to procedure 8 in program
ghsa_unreviewed·2022-05-14·CVSS 7.8
CVE-2008-4619 [HIGH] GHSA-fcfq-3ccf-xx7r: The RPC subsystem in Sun Solaris 9 allows remote attackers to cause a denial of service (daemon crash) via a crafted request to procedure 8 in program
The RPC subsystem in Sun Solaris 9 allows remote attackers to cause a denial of service (daemon crash) via a crafted request to procedure 8 in program 100000 (rpcbind), related to the XDR_DECODE operation and the taddr2uaddr function. NOTE: this might be a duplicate of CVE-2007-0165.
Red Hat
libtirpc: rpcbind DoS in the taddr2uaddr XDR_DECODE
vendor_redhat·2008-10-17·CVSS 7.8
CVE-2008-4619 [HIGH] libtirpc: rpcbind DoS in the taddr2uaddr XDR_DECODE
libtirpc: rpcbind DoS in the taddr2uaddr XDR_DECODE
The RPC subsystem in Sun Solaris 9 allows remote attackers to cause a denial of service (daemon crash) via a crafted request to procedure 8 in program 100000 (rpcbind), related to the XDR_DECODE operation and the taddr2uaddr function. NOTE: this might be a duplicate of CVE-2007-0165.
No detection rules found.
http://secunia.com/advisories/32475http://securityreason.com/securityalert/4440http://sunsolve.sun.com/search/document.do?assetkey=1-66-200412-1http://www.openwall.com/lists/oss-security/2008/10/28/2http://www.openwall.com/lists/oss-security/2008/10/29/1http://www.openwall.com/lists/oss-security/2008/10/31/2http://www.vupen.com/english/advisories/2008/2945https://exchange.xforce.ibmcloud.com/vulnerabilities/46057https://www.exploit-db.com/exploits/6775https://www.redhat.com/archives/fedora-package-announce/2008-October/msg00819.htmlhttp://secunia.com/advisories/32475http://securityreason.com/securityalert/4440http://sunsolve.sun.com/search/document.do?assetkey=1-66-200412-1http://www.openwall.com/lists/oss-security/2008/10/28/2http://www.openwall.com/lists/oss-security/2008/10/29/1http://www.openwall.com/lists/oss-security/2008/10/31/2http://www.vupen.com/english/advisories/2008/2945https://exchange.xforce.ibmcloud.com/vulnerabilities/46057https://www.exploit-db.com/exploits/6775https://www.redhat.com/archives/fedora-package-announce/2008-October/msg00819.html
2008-10-21
Published