Multiple Unix rpcbind Spoofed Source IP Address Remote DoS
Remote / Network Access
Denial of Service
Loss of Availability
Multiple vendor implementations of RPCBIND contains a flaw that may allow a remote denial of service. It is possible for a remote attacker to arbitrary register or unregister RPC services or manipulate these services using a spoofed source IP address, resulting in a loss of availability.
Currently, there are no known upgrades or patches to correct this issue. It is possible to correct the flaw by implementing the following workaround: The RPC protocol should be blocked at all border gateways and firewalls.