101 matches found
CVE-2009-2727
Stack-based buffer overflow in the ttinternalrealpath function in the ToolTalk library libtt.a in IBM AIX 5.2.0, 5.3.0, 5.3.7 through 5.3.10, and 6.1.0 through 6.1.3, when the rpc.ttdbserver daemon is enabled in /etc/inetd.conf, allows remote attackers to execute arbitrary code via a long...
CVE-2009-2727
CVE-2009-2727 describes a stack-based buffer overflow in the ToolTalk library (libtt.a) on IBM AIX when the rpc.ttdbserver daemon is enabled in /etc/inetd.conf. A remote attacker can trigger code execution by sending a long XDR-encoded ASCII string to remote procedure 15. Affected are AIX 5.2.0, ...
AIX 5.2 TL 10 : X11.Dt.ToolTalk (U827247)
The remote host is missing AIX PTF U827247, which is related to the security of the package X11.Dt.ToolTalk. There is a buffer overflow vulnerability in the ToolTalk library libtt.a. A remote attacker can exploit this vulnerability when the rpc.ttdbserver is enabled in /etc/inetd.conf. The...
IBM AIX ToolTalk RPC Server Remote Buffer Overflow
ToolTalk is an inter-application communications system developed by Sun Microsystems in order to allow applications to communicate with each other at runtime. The ToolTalk service is designed to facilitate the development of inter-operating applications that serve individuals and work groups. A...
ToolTalk rpc.ttdbserverd _tt_internal_realpath Buffer Overflow (AIX)
This module exploits a buffer overflow vulnerability in ttinternalrealpath function of the ToolTalk database server rpc.ttdbserverd. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'ToolTalk...
[RISE-2009001] ToolTalk rpc.ttdbserverd _tt_internal_realpath Buffer Overflow Vulnerability
RISE-2009001 ToolTalk rpc.ttdbserverd ttinternalrealpath Buffer Overflow Vulnerability http://risesecurity.org/advisories/RISE-2009001.txt Published: June 19, 2009 Updated: June 19, 2009 INTRODUCTION There exists a vulnerability within a function of the ToolTalk database server rpc.ttdbserverd,...
ToolTalk rpc.ttdbserverd buffer overflow
Buffer overflow in ttinternalrealpath RPC procedure...
IBM AIX rpc.ttdbserver远程溢出漏洞
BUGTRAQ ID: 35419 IBM AIX是一款商业性质的UNIX操作系统。 AIX的ToolTalk库libtt.a中存在缓冲区溢出漏洞。如果/etc/inetd.conf中启用了rpc.ttdbserver的话,远程攻击者就可以通过提交恶意RPC请求触发这个溢出,导致以root用户权限执行任意指令。 IBM AIX 6.1 IBM AIX 5.3 IBM AIX 5.2 临时解决方法: 从/etc/inetd.conf中删除rpc.ttdbserver项并刷新inetd: chsubserver -r inetd -C /etc/inetd.conf -d -v...
Solaris Update for Tooltalk 110287-16
Check for the Version of Tooltalk OpenVAS Vulnerability Test Solaris Update for Tooltalk 110287-16 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms ...
Solaris Update for Tooltalk 110287-16
Check for the Version of Tooltalk OpenVAS Vulnerability Test Solaris Update for Tooltalk 110287-16 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms ...
Solaris 5.4 (x86) : 108637-02
CDE 1.0.1x86/1.0.2x86: ToolTalk patch. Date this patch was last updated by Sun : Jan/04/02 %NASLMINLEVEL 999999 @DEPRECATED@ This script has been deprecated as the associated patch is not currently a recommended security fix. Disabled on 2011/09/17. C Tenable Network Security, Inc. if !...
Solaris 5.4 (sparc) : 108636-02
CDE 1.0.1/1.0.2: ToolTalk patch. Date this patch was last updated by Sun : Jan/04/02 %NASLMINLEVEL 999999 @DEPRECATED@ This script has been deprecated as the associated patch is not currently a recommended security fix. Disabled on 2011/09/17. C Tenable Network Security, Inc. if !...
AIX 5.1 : IY23846
The remote host is missing AIX Critical Security Patch number IY23846 SECURITY: Format string vulnerability in CDE ToolTalk server. You should install this patch for your system to be up-to-date. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. if ! definedfunc"bnrandom" exit0;...
Solaris 7 (x86) : 107894-20
OpenWindows 3.6.1x86: Tooltalk patch. Date this patch was last updated by Sun : Sep/24/03 %NASLMINLEVEL 999999 @DEPRECATED@ This script has been deprecated as the associated patch is not currently a recommended security fix. Disabled on 2011/09/17. C Tenable Network Security, Inc. if !...
Solaris 8 (sparc) : 110286-16
OpenWindows 3.6.2: Tooltalk patch. Date this patch was last updated by Sun : Jul/03/08 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc'; include'compat.inc'; if description...
Solaris 8 (x86) : 110287-16
OpenWindows 3.6.2x86: Tooltalk patch. Date this patch was last updated by Sun : Jul/03/08 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc'; include'compat.inc'; if descripti...
Solaris 7 (sparc) : 107893-21
OpenWindows 3.6.1: Tooltalk patch. Date this patch was last updated by Sun : Sep/24/03 %NASLMINLEVEL 999999 @DEPRECATED@ This script has been deprecated as the associated patch is not currently a recommended security fix. Disabled on 2011/09/17. C Tenable Network Security, Inc. if !...
Solaris 2.5.1 (sparc) : 104489-15
OpenWindows 3.5.1: ToolTalk patch. Date this patch was last updated by Sun : Aug/29/02 %NASLMINLEVEL 999999 @DEPRECATED@ This script has been deprecated as the associated patch is not currently a recommended security fix. Disabled on 2011/09/17. C Tenable Network Security, Inc. if !...
Solaris 2.6 (sparc) : 105802-19
OpenWindows 3.6: ToolTalk patch. Date this patch was last updated by Sun : Sep/11/02 %NASLMINLEVEL 999999 @DEPRECATED@ This script has been deprecated as the associated patch is not currently a recommended security fix. Disabled on 2011/09/17. C Tenable Network Security, Inc. if !...
Solaris 2.6 (x86) : 105803-21
OpenWindows 3.6x86: ToolTalk patch. Date this patch was last updated by Sun : Sep/11/02 %NASLMINLEVEL 999999 @DEPRECATED@ This script has been deprecated as the associated patch is not currently a recommended security fix. Disabled on 2011/09/17. C Tenable Network Security, Inc. if !...