ID de Prueba:	1.3.6.1.4.1.25623.1.0.10213
Categoría:	RPC
Título:	cmsd service
Resumen:	Checks the presence of a RPC service
Descripción:	The cmsd RPC service is running. This service has a long history of security holes, so you should really know what you are doing if you decide to let it run. *** No security hole regarding this program has been tested, so *** this might be a false positive Solution : We suggest that you disable this service. Risk factor : High
Referencia Cruzada:	BugTraq ID: 428 BugTraq ID: 524 BugTraq ID: 5356 Common Vulnerability Exposure (CVE) ID: CVE-1999-0320 Sun Security Bulletin: 00166 http://sunsolve.sun.com/pub-cgi/retrieve.pl?doctype=coll&doc=secbull/166 XForce ISS Database: sun-rpc.cmsd Common Vulnerability Exposure (CVE) ID: CVE-1999-0696 Bugtraq: 19990709 Exploit of rpc.cmsd (Google Search) SCO Security Bulletin: SB-99.12 Sun Security Bulletin: 00188 http://sunsolve.sun.com/pub-cgi/retrieve.pl?doctype=coll&doc=secbull/188 Sun Bug ID: 4230754 HPdes Security Advisory: HPSBUX9908-102 http://www1.itrc.hp.com/service/cki/docDisplay.do?docId=HPSBUX9908-102 COMPAQ Service Security Patch: SSRT0614U_RPC_CMSD Cert/CC Advisory: CA-99-08 Computer Incident Advisory Center Bulletin: J-051 http://www.ciac.org/ciac/bulletins/j-051.shtml XForce ISS Database: sun-cmsd-bo Common Vulnerability Exposure (CVE) ID: CVE-2002-0391 ISS Security Advisory: 20020731 Remote Buffer Overflow Vulnerability in Sun RPC http://bvlive01.iss.net/issEn/delivery/xforce/alertdetail.jsp?oid=20823 Bugtraq: 20020731 Remote Buffer Overflow Vulnerability in Sun RPC (Google Search) http://marc.theaimsgroup.com/?l=bugtraq&m=102813809232532&w=2 Bugtraq: 20020801 RPC analysis (Google Search) http://marc.theaimsgroup.com/?l=bugtraq&m=102821785316087&w=2 Bugtraq: 20020802 MITKRB5-SA-2002-001: Remote root vulnerability in MIT krb5 admin (Google Search) http://marc.theaimsgroup.com/?l=bugtraq&m=102831443208382&w=2 http://www.cert.org/advisories/CA-2002-25.html CERT/CC vulnerability note: VU#192995 http://www.kb.cert.org/vuls/id/192995 AIX APAR: IY34194 http://archives.neohapsis.com/archives/aix/2002-q4/0002.html Caldera Security Advisory: CSSA-2002-055.0 ftp://ftp.caldera.com/pub/security/OpenLinux/CSSA-2002-055.0.txt Conectiva Linux advisory: CLA-2002:515 http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000515 Conectiva Linux advisory: CLA-2002:535 http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000535 Debian Security Information: DSA-142 (Google Search) http://www.debian.org/security/2002/dsa-142 Debian Security Information: DSA-143 (Google Search) http://www.debian.org/security/2002/dsa-143 Debian Security Information: DSA-146 (Google Search) http://www.debian.org/security/2002/dsa-146 Debian Security Information: DSA-149 (Google Search) http://www.debian.org/security/2002/dsa-149 Debian Security Information: DSA-333 (Google Search) http://www.debian.org/security/2003/dsa-333 En Garde Linux Advisory: ESA-20021003-021 http://www.linuxsecurity.com/advisories/other_advisory-2399.html FreeBSD Security Advisory: FreeBSD-SA-02:34.rpc http://marc.theaimsgroup.com/?l=bugtraq&m=102821928418261&w=2 HPdes Security Advisory: HPSBTL0208-061 http://online.securityfocus.com/advisories/4402 HPdes Security Advisory: HPSBUX0209-215 http://archives.neohapsis.com/archives/hp/2002-q3/0077.html http://www.mandrakesoft.com/security/advisories?name=MDKSA-2002:057 Microsoft Security Bulletin: MS02-057 http://www.microsoft.com/technet/security/bulletin/ms02-057.asp NETBSD Security Advisory: NetBSD-SA2002-011 ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2002-011.txt.asc RedHat Security Advisories: RHSA-2002:166 http://rhn.redhat.com/errata/RHSA-2002-166.html http://www.redhat.com/support/errata/RHSA-2003-168.html RedHat Security Advisories: RHSA-2002:172 http://rhn.redhat.com/errata/RHSA-2002-172.html http://www.redhat.com/support/errata/RHSA-2002-173.html http://www.redhat.com/support/errata/RHSA-2002-167.html http://www.redhat.com/support/errata/RHSA-2003-212.html SGI Security Advisory: 20020801-01-A ftp://patches.sgi.com/support/free/security/advisories/20020801-01-A SGI Security Advisory: 20020801-01-P SuSE Security Announcement: SuSE-SA:2002:031 (Google Search) Bugtraq: 20020803 OpenAFS Security Advisory 2002-001: Remote root vulnerability in OpenAFS servers (Google Search) http://archives.neohapsis.com/archives/bugtraq/2002-07/0514.html Bugtraq: 20020802 kerberos rpc xdr_array (Google Search) http://online.securityfocus.com/archive/1/285740 Bugtraq: 20020909 GLSA: glibc (Google Search) http://marc.theaimsgroup.com/?l=bugtraq&m=103158632831416&w=2 http://www.iss.net/security_center/static/9170.php http://www.securityfocus.com/bid/5356 http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:42 http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:4728 http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:9
Copyright	This script is Copyright (C) 1999 Renaud Deraison

Esta es sólo una de 32582 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

Registro de Nuevo Usuario Email: Usuario: Contraseña: Envíeme por email sus boletines mensuales, informándome los últimos servicios, mejoras y encuestas. Por favor envíeme por email un anuncio de prueba de vulnerabilidades siempre que se agregue una nueva prueba.     Privacidad

Ingreso de Usuario Registrado   Usuario:     Contraseña:     ¿Olvidó su usuario o contraseña?? Email/ID de Usario: