[Bug 219066] rpcbind rpcbomb

bugzilla-noreply Thu, 04 May 2017 05:36:43 -0700

https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=219066


            Bug ID: 219066
           Summary: rpcbind rpcbomb
           Product: Base System
           Version: 10.3-STABLE
          Hardware: Any
                OS: Any
            Status: New
          Severity: Affects Many People
          Priority: ---
         Component: kern
          Assignee: freebsd-bugs@FreeBSD.org
          Reporter: la...@fit.vutbr.cz

See http://seclists.org/oss-sec/2017/q2/209

FreeBSD rpcbind seems to be vulnerable too:

# ruby rpcbomb.rb localhost 100000000

     r p c b o m b

     DoS exploit for *nix rpcbind/libtirpc.

     (c) 2017 Guido Vranken.

     https://guidovranken.wordpress.com/

Allocated 100000000 bytes at host localhost:111.

Damn it feels good to be a gangster.

-- 
You are receiving this mail because:
You are the assignee for the bug.
_______________________________________________
freebsd-bugs@freebsd.org mailing list
https://lists.freebsd.org/mailman/listinfo/freebsd-bugs
To unsubscribe, send any mail to "freebsd-bugs-unsubscr...@freebsd.org"

[Bug 219066] rpcbind rpcbomb

Reply via email to