2001701

	rpc.automountd overflow
advICE :Intrusions : 2001701

FAQ

Oh my gosh, I'm being HACKED!!!

How do I report the hacker to my ISP?

I'm seeing lots of attacks, is this normal?

Summary
An intruder is attempting to exploit the automountd buffer overflow.
Details
Systems running older versions of automountd may be vulnerable to an exploit in automountd that allows a local intruder to execute arbitrary commands with the privileges of the automountd process.

more information

BugtraqID: 729 Multiple Vendor Automountd Vulnerability
advICE: Buffer overflows: More about this general class of attacks, which is the root cause of many attacks on the Internet.
CERT: CA-99.05.statd-automountd

parametric information

length The length field - this number is larger than expected, thus indicating a possible buffer overflow attempt.

 
Version appeared:

rpc.automountd overflow