https://www.exploit-db.com/exploits/21261
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200212-247

Tru64是Unix操作系统的一种变体，由Compaq公司负责分发、维护。Tru64网络实现上存在问题，远程攻击者可以对主机网络服务造成拒绝服务攻击。有两台Tru64Unix4.0Dpatchkit3onAlpha4100’sand8400’s，用nmap扫描nmap-TPolite-O-p23，139-oM/tmp/lst’xxx.xxx.16-44.*’导致某些网络服务僵住，比如rpc.lockd、telnet、ftp、snmp、ttdbserverd等等。之后无法连接这些网络服务，一分钟后某些服务可以恢复正常，某些服务依旧无法恢复。注意，Compaq公司不再对Tru64Unix4.0D提供技术支持，其它版本尚未得知是否存在类似问题。MattChapman([email protected])跟踪了该问题，认为这是一个内核问题，而不是inetd的问题select(4096，0x11ffff608={0x00000060，…}，0x0={}，0x0={}，0x11ffff608={})=1[，{0x00000020，…}，{}，{}，]accept(5，0x11fffefc8，0x11fffefc0=16)=select()系统调用表明socket已经准备好，但随后阻塞在accept()系统调用处，可能此时listen()队列里的连接请求已经被丢弃了。

source: http://www.securityfocus.com/bid/4011/info

It has been reported that Tru64 systems may be prone to a denial of service condition when handling malformed TCP packets.

Specifically, when processing a malformed TCP packet with both the SYN and FIN flags set, vulnerable Tru64 systems may block indefinitely, thus causing a denial of service. As a result other legitimate users may no longer be capable of accessing remote services.

This vulnerability is said to affect Tru64 4.0E as well as various versions of Digital Unix and VxWorks.

hping2 -a <spoofed ip> -SPF -p 21 -c 1 <dest ip>

来源:BID
名称:4011
链接:http://www.securityfocus.com/bid/4011
来源:XF
名称:tru64-nmap-portscan-dos(8040)
链接:http://www.iss.net/security_center/static/8040.php
来源:BUGTRAQ
名称:20020130DoSbugonTru64
链接:http://archives.neohapsis.com/archives/bugtraq/2002-01/0357.html
来源：NSFOCUS
名称：2304
链接：http://www.nsfocus.net/vulndb/2304