Sun.Solaris.ypbind.Buffer.Overflow
Description
It indicates a possible exploit of buffer overflows in ypbind daemon in Solaris that may allow remote attackers to execute arbitrary code on the affected system. This vulnerability exists due to insufficient boundary checks performed on user-supplied data. "ypbind" runs with superuser privileges, therefore, remote code execution as the superuser is possible. It is also likely that a system-wide denial of service condition could be created by crashing the "ypbind" process.
Affected Products
Sun Microsystems, Inc.: Solaris 1
Sun Microsystems, Inc.: Solaris 1
Sun Microsystems, Inc.: Solaris 2.5.1
Sun Microsystems, Inc.: Solaris 2.6
Sun Microsystems, Inc.: Solaris 7
Sun Microsystems, Inc.: Solaris 8
Impact
Allow a remote attacker to gain root access, and thus complete control of the victim host
Recommended Actions
Apply the patch
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |
Version Updates
Date | Version | Detail |
---|---|---|
2023-07-31 | 25.611 | Name:SUN. Solaris. ypbind. Buffer. Overflow:Sun. Solaris. ypbind. Buffer. Overflow |