Info

Disclosure

Jan 05, 2007

Discovery

Unknown

Dates

Exploit

Unknown

Solution

Jan 05, 2007

Description

Classification

Location: Remote / Network Access
Attack Type: Input Manipulation
Impact: Loss of Integrity
Solution: Workaround
Exploit: Exploit Private
Disclosure: Vendor Verified, Coordinated Disclosure

Solution

Currently, there are no known upgrades or patches to correct this vulnerability. It is possible to temporarily work around the flaw by implementing the following workaround: Block access to TCP port 106 from untrusted sources at the network level.

Products

Unknown or Incomplete

References

Security Tracker: 1017474
CVE ID: 2006-6336 (see also: NVD)
Bugtraq ID: 21897
Secunia Advisory ID: 23622
ISS X-Force ID: 31325
VUPEN Advisory: ADV-2007-0066
Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2007-01/0162.html
http://www.securityfocus.com/archive/1/archive/1/456077/100/0/threaded
Other Advisory URL: http://www.zerodayinitiative.com/advisories/ZDI-07-001.html

Credit

Unknown or Incomplete

Direct URL: http://osvdb.org/32587