COMMAND

    mountd(8C)

SYSTEMS AFFECTED

    SunOS 4.1.1,  4.1.2, 4.1.3,  and 4.1.3c.   SunOS 4.1.3.u.1  is not
    vulnerable.

PROBLEM

    If an access  list of hosts  within /etc/exports is  a string over
    256 characters or the if the cached list of netgroups exceeds  the
    cache capacity then the filesystem can be mounted by everyone.

    Unauthorized remote hosts will be able to mount the filesystem.

SOLUTION

    Sun has produced a patch for this vulnerability for sun3 and  sun4
    architectures.   It  is  available  through  your local Sun Answer
    Center  as  well  as  through  anonymous  FTP  from the ftp.uu.net
    system  in  the  /systems/sun/sun-dist   directory  or  from   the
    ftp.eu.net system in the /sun/fixes directory.

    Obtain   and   install   the   appropriate   patch  following  the
    instructions included with the patch.

    Fix                     Patch ID       Filename            Checksum
    /usr/etc/rpc.mountd     100296-01      100296-01.tar.Z     01501   233