Guest

Preview Tool

Cisco Bug: CSCuj69658 - rpcbind on PCG opens well-known ports outside of the standard port 111

Last Modified

Jun 22, 2020

Products (1)

  • Headend System Releases

Known Affected Releases

PCG-2.4.1.0

Description (partial)

Symptom:
The rpcbind process on the PCG opens ports within the IANA well-known port range (0-1023).  This is in addition to the expected standard 111 rpcbind port. For security and network security appliance management purposes the rpcbind process on the PCG should not have the wrong protocols running on well-known ports.

Reproduce:
lsof +M -P | grep rpcbind | grep -v 111 | grep \:
Observe that the rpcbind process has ports open within the IANA well-known port range (0-1023).
Example:
rpcbind    2189       rpc    7u     IPv4              15460        0t0        UDP *:668 
rpcbind    2189       rpc   10u     IPv6              15467        0t0        UDP *:668

Conditions:
Fully configured and operational PCG.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.