SUSE CVE-2026-5358

REJECTED: CVE-2026-5358 is rejected for two reasons. Firstly it has been discovered that no NIS+ client or server was ever released for any Linux-based OS distributions and as such this makes the API provisional and unused. Secondly it has been discovered that the NIS+ cold start cache...

EUVD-2026-23977

The obsolete nislocalprincipal function in the GNU C Library version 2.43 and older may overflow a buffer in the data section, which could allow an attacker to spoof a crafted response to a UDP request generated by this function and overwrite neighboring static data in the requesting application...

CVE-2026-5358

Rejected reason: REJECTED: CVE-2026-5358 is rejected for two reasons. Firstly it has been discovered that no NIS+ client or server was ever released for any Linux-based OS distributions and as such this makes the API provisional and unused. Secondly it has been discovered that the NIS+ cold...

CVE-2026-5358

REJECTED: CVE-2026-5358 is rejected for two reasons. Firstly it has been discovered that no NIS+ client or server was ever released for any Linux-based OS distributions and as such this makes the API provisional and unused. Secondly it has been discovered that the NIS+ cold start cache...

CVE-2026-5358

...

EUVD-1999-0312

Malware in sbrugna...

SUSE CVE-2003-0251

ypserv NIS server before 2.7 allows remote attackers to cause a denial of service via a TCP client request that does not respond to the server, which causes ypserv to block...

SUSE CVE-2010-0015

nis/nssnis/nis-pwd.c in the GNU C Library aka glibc or libc6 2.7 and Embedded GLIBC EGLIBC 2.10.2 adds information from the passwd.adjunct.byname map to entries in the passwd map, which allows remote attackers to obtain the encrypted passwords of NIS accounts by calling the getpwnam function...

IT-Grundschutz M5.018: Einsatz der Sicherheitsmechanismen von NIS

IT-Grundschutz M5.018: Einsatz der Sicherheitsmechanismen von NIS. Stand: 14. Ergänzungslieferung 14. EL. OpenVAS Vulnerability Test $Id: GSHBM5018.nasl 7883 2017-11-23 11:22:59Z emoss $ IT-Grundschutz, 14. EL, Maßnahme 5.018 Authors: Thomas Rotter Copyright: Copyright c 2015 Greenbone Networks...

HP-UX 10/11,IRIX 3/4/5/6,OpenSolaris build snv,Solaris 8/9/10,SunOS 4.1 RPC.YPUpdated Command Execution (1)

No description provided by source. / source: http://www.securityfocus.com/bid/1749/info HP-UX 10.x/11.x,IRIX 3.x/4.x/5.x/6.x,OpenSolaris build snv,Solaris 8/9/10,SunOS 4.1.x RPC.YPUpdated Command Execution 1 The 'rpc.ypupdated' deamon is part of the Network Information Service NIS or Yellow Pages...

[SECURITY] Fedora 17 Update: ypserv-2.29-1.fc17

The Network Information Service NIS is a system that provides network information login names, passwords, home directories, group information to all of the machines on a network. NIS can allow users to log in on any machine on the network, as long as the machine has the NIS client programs runnin...

[SECURITY] Fedora 18 Update: ypserv-2.29-1.fc18

The Network Information Service NIS is a system that provides network information login names, passwords, home directories, group information to all of the machines on a network. NIS can allow users to log in on any machine on the network, as long as the machine has the NIS client programs runnin...

busybox: udhcpc insufficient checking of DHCP options

The DHCP client udhcpc in BusyBox before 1.20.0 allows remote DHCP servers to execute arbitrary commands via shell metacharacters in the 1 HOSTNAME, 2 DOMAINNAME, 3 NISDOMAIN, and 4 TFTPSERVERNAME host name options...

CentOS Update for squirrelmail CESA-2009:1066 centos3 i386

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

Sun Solaris rpc.ypupdated Command Injection (CVE-1999-0208)

Sun Solaris provides its Network Information Service NIS services through the SUN-RPC remote procedure call mechanism. One of these services is called rpc.ypupdated which is responsible for duplicating information from master NIS server to slave servers. A command injection vulnerability exists i...

Preemptive Protection against Sun Solaris rpc.ypupdated Command Injection Vulnerability

A command injection vulnerability exists in Sun Solaris Network Information Service NIS. Sun Solaris provides its NIS services through the SUN-RPC remote procedure call RPC mechanism. A remote attacker may exploit this issue to inject and execute arbitrary code on a vulnerable system via a...

gnome-screensaver using NIS auth will unlock if NIS goes away

gnome-screensaver before 2.22.1, when a remote authentication server is enabled, crashes upon an unlock attempt during a network outage, which allows physically proximate attackers to gain access to the locked session, a related issue to CVE-2007-1859...

gnome-screensaver using NIS auth will unlock if NIS goes away

gnome-screensaver before 2.22.1, when a remote authentication server is enabled, crashes upon an unlock attempt during a network outage, which allows physically proximate attackers to gain access to the locked session, a related issue to CVE-2007-1859...

rpc.ypupdated command injection vulnerability

Added: 03/28/2008 CVE: CVE-1999-0208 BID: 1749 OSVDB: 11517 Background Network Information Service NIS is a distributed database that allows you to maintain consistent configuration files throughout your network. rpc.ypupdated is an NIS service which is responsible for duplicating information fro...

多家厂商rpc.ypupdated远程可执行任意命令漏洞

BUGTRAQ ID: 1749 CVECAN ID: CVE-1999-0208 rpc.ypupdated RPC守护进程是Network Information Service NIS的一个组件，它使NIS客户端更新自己的NIS数据库。 rpc.ypupdated守护进程实现上存在输入验证漏洞，远程攻击者可能利用此漏洞以root用户的权限在主机上执行任意命令。 当守护进程收到一个Yello Pages的更新请求，它会调用Bource...