Main Vulnerability Database Exploits ID:3729 - Exploit for Resource management error in libtirpc - CVE-2013-1950

ID:3729 - Exploit for Resource management error in libtirpc - CVE-2013-1950

Published: August 4, 2020

Vulnerability identifier: #VU33685

Vulnerability risk: Medium

CVE-ID: CVE-2013-1950

CWE-ID: CWE-399

Exploitation vector: Remote access

Vulnerable software:
libtirpc

Link to public exploit:

https://www.exploit-db.com/exploits/26887/

Vulnerability description

The vulnerability allows a remote non-authenticated attacker to perform service disruption.

The svc_dg_getargs function in libtirpc 0.2.3 and earlier allows remote attackers to cause a denial of service (rpcbind crash) via a Sun RPC request with crafted arguments that trigger a free of an invalid pointer.

Remediation

Install update from vendor's website.

ID:3729 - Exploit for Resource management error in libtirpc - CVE-2013-1950

Link to public exploit:

Vulnerability description

Remediation

Please verify you're human