-----BEGIN PGP SIGNED MESSAGE-----

===============================================================================
Security Advisory                                                       CERT-NL
===============================================================================
Author/Source : Teun Nijssen                                Index  :    S-98-36
Distribution  : World                                       Page   :          1
Classification: External                                    Version:          1
Subject       : Buffer Overflow in NIS+                     Date   :  10-Jun-98
===============================================================================

By courtesy of CERT Coordination Center we received the following information.

CERT Coordination Center advisory CA-98.06 reports a vulnerability
in several implementations of rpc.nisd   This program supplies NIS+ services.

This vulnerability allows people to crash NIS+ or to obtain root privs.
Also, after crashing a NIS+ server authentication of other services can be
faked.

This advisory provides pointers patches by several vendors.

CERT-NL recommends to read the advisory to find out the vulnerability status
of you Unix servers and apply patches where apropriate.

All CERT Coordination Center advisories are mirrored by CERT-NL.
The specific URL for this case is:

ftp://ftp.nic.surfnet.nl/surfnet/net-security/
cert-cc-mirror/cert_advisories/CA-98.06.nisd


ADVISORIES ARE REGULARLY UPDATED BY CERT COORDINATION CENTER.
Therefore we advise you to check on our mirror regularly -
you can automate this process using the CERT-NL notifier service.

More information about the CERT-NL mirror and notifier services is
contained in News items N-95-01 (notifier) and N-95-02 (CERT mirror),
both present on
<ftp://ftp.surfnet.nl/surfnet/net-security/cert-nl/docs/news/>

==============================================================================
CERT-NL is the Computer Emergency Response Team for SURFnet customers.
SURFnet is the Dutch network for educational, research and related institutes.
CERT-NL is a member of the Forum of Incident Response and Security Teams
(FIRST).

All CERT-NL material is available under:
  http://www.surfnet.nl/surfnet/security/cert-nl.html
  ftp://ftp.surfnet.nl/surfnet/net-security

In case of computer or network security problems please contact your
local CERT/security-team or CERT-NL  (if your institute is NOT a SURFnet
customer please address the appropriate (local) CERT/security-team).

CERT-NL is one/two hour(s) ahead of UTC (GMT) in winter/summer,
i.e. UTC+0100 in winter and UTC+0200 in summer (DST).

   Email:     cert-nl@surfnet.nl     ATTENDED REGULARLY ALL DAYS
   Phone:     +31 302 305 305        BUSINESS HOURS ONLY
   Fax:       +31 302 305 329        BUSINESS HOURS ONLY
   Snailmail: SURFnet bv
              Attn. CERT-NL
              P.O. Box 19035
              NL - 3501 DA  UTRECHT
              The Netherlands

NOODGEVALLEN:    06 52 87 92 82      ALTIJD BEREIKBAAR
EMERGENCIES : +31 6 52 87 92 82      ATTENDED AT ALL TIMES
CERT-NL'S EMERGENCY PHONENUMBER	IS ONLY TO BE USED IN CASE OF EMERGENCIES:
THE SURFNET HELPDESK OPERATING THE EMERGENCY NUMBER HAS A *FIXED*
PROCEDURE FOR DEALING WITH YOUR ALERT AND WILL IN REGULAR CASES RELAY IT
TO CERT-NL IN AN APPROPRIATE MANNER. CERT-NL WILL THEN CONTACT YOU.

==============================================================================

-----BEGIN PGP SIGNATURE-----
Version: PGPfreeware 5.5.3i for non-commercial use <http://www.pgpi.com>

iQCVAwUBNX7hwFpSTqmIRWKVAQHFXQP/QCy9ANj1tqcEsXWL+QCHbGIE5Yk/7zrN
LYU5ykggD7bt5wWer7cCkKh7gotgl43Sd1mtgwYAI9c2Yg9U0En6B4Pqvp+03gE8
azTf56kR+h95lm16xd7qsGoPdq4yNTPazHSFbjhutron4BCjrpM8HsiY6ufEA7Hs
jMUHn6s9fUU=
=1tN7
-----END PGP SIGNATURE-----