3 matches found
Solaris ypupdated Command Execution
This exploit targets a weakness in the way the ypupdated RPC application uses the command shell when handling a MAP UPDATE request. Extra commands may be launched through this command shell, which runs as root on the remote host, by passing commands in the format '|'. Vulnerable systems include...
CVE-1999-0209
creationtimestamp| type| source ---|---|--- 2008-04-04 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/5366 2010-07-25 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/16326 2018-05-29 15:50:33+00:00| seen|...
CVE-1999-0209
CVE-1999-0209 concerns SunView (SunTools) selection_svc; connected sources document a broader, concrete detail: Solaris SunRPC ypupdated RPC service vulnerable to remote command execution via MAP UPDATE handling, permitting command injection (shell) and potentially root-level execution on affecte...