Intrusion PreventionSun.Solaris.ypbind.Buffer.Overflow
Description
It indicates a possible exploit of buffer overflows in ypbind daemon in Solaris that may allow remote attackers to execute arbitrary code on the affected system. This vulnerability exists due to insufficient boundary checks performed on user-supplied data. "ypbind" runs with superuser privileges, therefore, remote code execution as the superuser is possible. It is also likely that a system-wide denial of service condition could be created by crashing the "ypbind" process.
Affected Products
Sun Microsystems, Inc.: Solaris 1
Sun Microsystems, Inc.: Solaris 1
Sun Microsystems, Inc.: Solaris 2.5.1
Sun Microsystems, Inc.: Solaris 2.6
Sun Microsystems, Inc.: Solaris 7
Sun Microsystems, Inc.: Solaris 8
Impact
Allow a remote attacker to gain root access, and thus complete control of the victim host
Recommended Actions
Apply the patch
Telemetry
Coverage
| IPS (Regular DB) | |
| IPS (Extended DB) |
Version Updates
| Date | Version | Detail |
|---|---|---|
| 2023-07-31 | 25.611 | Name:SUN. Solaris. ypbind. Buffer. Overflow:Sun. Solaris. ypbind. Buffer. Overflow |
| ID | 11697 |
| Created | Feb 06, 2006 |
| Updated | Jul 28, 2023 |
| Risk |
|
| CVE ID | CVE-2001-1328 |
| Exploit Prediction Score | 3.39% |
| Default Action | drop |
| Active | |
| Affected OS | Solaris |
| Affected App | Other |