Intrusion Prevention

SUN.Solaris.ypbind.Buffer.Overflow

Description

It indicates a possible exploit of buffer overflows in ypbind daemon in Solaris that may allow remote attackers to execute arbitrary code on the affected system. This vulnerability exists due to insufficient boundary checks performed on user-supplied data. "ypbind" runs with superuser privileges, therefore, remote code execution as the superuser is possible. It is also likely that a system-wide denial of service condition could be created by crashing the "ypbind" process.

Affected Products

Sun Microsystems, Inc.: Solaris 1
Sun Microsystems, Inc.: Solaris 1
Sun Microsystems, Inc.: Solaris 2.5.1
Sun Microsystems, Inc.: Solaris 2.6
Sun Microsystems, Inc.: Solaris 7
Sun Microsystems, Inc.: Solaris 8

Impact

Allow a remote attacker to gain root access, and thus complete control of the victim host

Recommended Actions

Apply the patch
http://sunsolve.sun.com/securitypatch

CVE References

CVE-2001-1328

Other References

1