CVE-2002-1265 Information

Description

The Sun RPC functionality in multiple libc implementations does not provide a time-out mechanism when reading data from TCP connections which allows remote attackers to cause a denial of service (hang).

Reference

ftp://patches.sgi.com/support/free/security/advisories/20021103-01-P http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert/51082 http://www.info.apple.com/usen/security/security_updates.html http://www.iss.net/security_center/static/10539.php http://www.kb.cert.org/vuls/id/266817 http://www.securityfocus.com/bid/6103 http://www-1.ibm.com/services/continuity/recover1.nsf/mss/MSS-OAR-E01-2004.0800.1 https://oval.cisecurity.org/repository/search/definition/oval3Aorg.mitre.oval3Adef3A2248