RPC: Sun Solaris rpc.ypupdated Command Injection Vulnerability
This signature detects attempts to exploit a known vulnerability against Sun Solaris. A successful attack can lead to arbitrary code execution.
Extended Description
Sun Solaris is prone to an arbitrary command execution vulnerability because it fails to adequately sanitize user-supplied data to 'rpc.ypupdated'. Attackers can leverage this issue to execute arbitrary commands on vulnerable computers. Successful exploits will compromise the compromise the computer. This issue occurs only when 'rpc.ypupdated' is started using the '-i' command line switch. This switch is not used by default. Sun Solaris 10 is vulnerable; other versions may also be affected. Reports indicate that this issue was originally discovered in 1994. This BID is being retired as it is a duplicate of the vulnerability discussed in BID 1749 (Multiple Vendor RPC.YPUpdated Command Execution Vulnerability).
Affected Products
Sun solaris
Short Name
RPC:YPUPDATED-CMD-INJ
Severity
Major
Recommended
False
Recommended Action
Drop
Category
RPC
Keywords
CVE-1999-0208 Command Injection Solaris Sun Vulnerability bid:28383 rpc.ypupdated
Release Date
09/28/2010
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3336
False Positive
Unknown
Vendors
Sun
CVSS Score
10.0