Note: This is an archival copy of Security Sun Alert 200181 as previously published on http://sunsolve.sun.com.|
Latest version of this security advisory is available from http://support.oracle.com as Sun Alert 1000135.1.
Date of Workaround Release
Date of Resolved Release
Unprivileged local or remote users may be able to kill the SunForum process due to its improper handling of H.323 traffic. This is a type of Denial of Service (DoS).
This issue is described in NISCC Vulnerability Advisory 006489/H323 (see: http://www.uniras.gov.uk/vuls/2004/006489/h323.htm) which is referenced in CERT Advisory CA-2004-01 (see: http://www.cert.org/advisories/CA-2004-01.html).
This issue can occur in the following releases:
Should the described issue occur, the affected "SunForum" process may die due to a segmentation violation ("SEGV" signal). A core file may be generated in the working directory which "SunForum" was started in.
Until patches are available and can be applied, sites may wish to block access to the H.323 services from untrusted networks such as the Internet. Use a firewall or other packet-filtering technology to block the appropriate network ports:
Note: These are default ports only and may vary on a site-by-site basis. Consult your vendor or your firewall documentation for detailed instructions on how to configure the ports.
This issue is addressed in the following releases:
Note: SunForum 3D 1.0 will require an upgrade to SunForum 3.2 with patch 111526-15 to resolve this issue.
This solution has no attachment