RPC: Sun Solaris RWall Daemon Syslog Format String
This signature detects attempts to exploit a known vulnerability against Sun Solaris RWall Daemon. A successful attack can lead to arbitrary code execution.
Extended Description
Solaris is the freely available UNIX-derivative operating system developed and distributed by Sun Microsystems. A format-string vulnerability allows attackers to execute arbitrary code on vulnerable systems. When malicious format strings are sent from one system to another, an insecure 'syslog' call may allow a remote attacker to exploit the call to execute arbitrary code.
Affected Products
Sun solaris
Short Name
RPC:RPC.WALLD:SYSLOG-FS
Severity
Major
Recommended
False
Recommended Action
Drop
Category
RPC
Keywords
CA-2002-10 CVE-2002-0573 Daemon Format RWall Solaris String Sun Syslog bid:4639
Release Date
01/25/2006
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3336
Port
UDP/32776-32780
False Positive
Unknown
Vendors
Sun
CVSS Score
7.5