Executive Summary

Title Sun Alert 238365 A Security Vulnerability in rpc.ypupdated(1M) May Allow Execution of Arbitrary Code When Run in Insecure Mode
Name SUN-238365 First vendor Publication 2008-06-02
Vendor Sun Last vendor Modification 2008-12-03
Severity (Vendor) N/A Revision N/A

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score NA
Base Score NA Environmental Score NA
impact SubScore NA Temporal Score NA
Exploitabality Sub Score NA
Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector :
Cvss Base Score N/A Attack Range N/A
Cvss Impact Score N/A Attack Complexity N/A
Cvss Expoit Score N/A Authentication N/A
Calculate full CVSS 2.0 Vectors scores


Product: Solaris 8 Operating System, Solaris 9 Operating System, Solaris 10 Operating System

A security vulnerability in the rpc.ypupdated(1M) daemon, when configured to run in the insecure mode via the "-i" option, may allow local or remote unprivileged users to execute arbitrary code with root privileges.

State: Resolved
First released: 02-Jun-2008

Original Source

Url : http://blogs.sun.com/security/entry/sun_alert_238365_a_security