What is the severity of CVE-1999-0189?

CVE-1999-0189 is classified as a medium severity vulnerability due to the potential for exposure of services.

How do I fix CVE-1999-0189?

To fix CVE-1999-0189, it is recommended to restrict access to the high numbered UDP port used by rpcbind through firewall rules.

What systems are affected by CVE-1999-0189?

CVE-1999-0189 affects various versions of Solaris and SunOS, including Solaris 2.4, 2.5, 2.5.1, and SunOS versions 5.3 through 5.5.1.

What is the impact of CVE-1999-0189?

The impact of CVE-1999-0189 includes potential unauthorized access to services that listen on unfiltered high numbered UDP ports.

Is CVE-1999-0189 still a concern for modern systems?

While CVE-1999-0189 pertains to older systems, any legacy systems still in use may still be at risk and require attention.

Vulnerability/
CVE-1999-0189

high

7.5

CWE

NVD-CWE-Other

4/6/1997

22/3/2000

20/11/2024

CVE-1999-0189

First published: Wed Jun 04 1997(Updated: )

Solaris rpcbind listens on a high numbered UDP port, which may not be filtered since the standard port number is 111.

Credit: cve@mitre.org cve@mitre.org

Affected Software	Affected Version	How to fix
Oracle Solaris and Zettabyte File System (ZFS)	=2.4
Oracle Solaris and Zettabyte File System (ZFS)	=2.5
Oracle Solaris and Zettabyte File System (ZFS)	=2.5.1
Sun SunOS	=5.3
Sun SunOS	=5.4
Sun SunOS	=5.5
Sun SunOS	=5.5.1

Never miss a vulnerability like this again

Reference Links

http://sunsolve.sun.com/pub-cgi/retrieve.pl?doctype=coll&doc=secbull/142

Frequently Asked Questions

What is the severity of CVE-1999-0189?
CVE-1999-0189 is classified as a medium severity vulnerability due to the potential for exposure of services.
How do I fix CVE-1999-0189?
To fix CVE-1999-0189, it is recommended to restrict access to the high numbered UDP port used by rpcbind through firewall rules.
What systems are affected by CVE-1999-0189?
CVE-1999-0189 affects various versions of Solaris and SunOS, including Solaris 2.4, 2.5, 2.5.1, and SunOS versions 5.3 through 5.5.1.
What is the impact of CVE-1999-0189?
The impact of CVE-1999-0189 includes potential unauthorized access to services that listen on unfiltered high numbered UDP ports.
Is CVE-1999-0189 still a concern for modern systems?
While CVE-1999-0189 pertains to older systems, any legacy systems still in use may still be at risk and require attention.

agent/type
agent/first-publish-date
collector/mitre-cve
source/MITRE
agent/severity
agent/weakness
agent/references
agent/description
agent/last-modified-date
agent/author
agent/event
agent/source
agent/softwarecombine
agent/tags
collector/nvd-api
source/NVD
agent/software-canonical-lookup
agent/software-canonical-lookup-request
collector/nvd-historical
collector/nvd-index
vendor/sun
canonical/oracle solaris and zettabyte file system (zfs)
version/oracle solaris and zettabyte file system (zfs)/2.4
version/oracle solaris and zettabyte file system (zfs)/2.5
version/oracle solaris and zettabyte file system (zfs)/2.5.1
canonical/sun sunos
version/sun sunos/5.3
version/sun sunos/5.4
version/sun sunos/5.5
version/sun sunos/5.5.1

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.