Vulnerability   
Search   
    Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.0.80034
Category:Gain a shell remotely
Title:irix rpc.passwd overflow
Summary:The remote RPC service 100009 (yppasswdd) is vulnerable; to a buffer overflow which allows any user to obtain a root shell on this host.
Description:Summary:
The remote RPC service 100009 (yppasswdd) is vulnerable
to a buffer overflow which allows any user to obtain a root shell on this host.

Solution:
Disable this service if you don't use
it, or see SGI advisory #20020601-01-P.

CVSS Score:
7.2

CVSS Vector:
AV:L/AC:L/Au:N/C:C/I:C/A:C

Cross-Ref: BugTraq ID: 4939
Common Vulnerability Exposure (CVE) ID: CVE-2002-0357
http://www.securityfocus.com/bid/4939
CERT/CC vulnerability note: VU#430419
http://www.kb.cert.org/vuls/id/430419
Computer Incident Advisory Center Bulletin: M-087
http://www.ciac.org/ciac/bulletins/m-087.shtml
http://www.osvdb.org/834
SGI Security Advisory: 20020601-01-P
ftp://patches.sgi.com/support/free/security/advisories/20020601-01-P
http://www.iss.net/security_center/static/9261.php
CopyrightCopyright (C) 2008 Renaud Deraison

This is only one of 99761 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.




© 1998-2024 E-Soft Inc. All rights reserved.