GEN:SID 1:1961
Message RPC portmap RQUOTA request UDP
Summary This event is generated when an attempt is made through a portmap GETPORT request to discover the port where the Remote Procedure Call (RPC) rquotad is listening.

Impact Information disclosure.  This request is used to discover which port rquotad is using.  Attackers can also learn what versions of the rquotad protocol are accepted by rquotad.
Detailed Information The portmapper service registers all RPC services on UNIX hosts. It can be queried to determine the port where RPC services such as rquotad run.  The rquotad RPC service can be queried for user disk usage and the limits of a local file system which is mounted by a remote machine over NFS.  A vulnerability associated with rquotad may permit the execution of arbitrary commands with the privileges of root.
Affected Systems All hosts running the UNIX portmapper.
Attack Scenarios An attacker can query the portmapper to discover the port where rquotad runs.  This may be a precursor to accessing rquotad.
Ease of Attack Easy.  
Corrective Action Limit remote access to RPC services.

Filter RPC ports at the firewall to ensure access is denied to RPC-enabled machines.

Disable unneeded RPC services.
Additional References