CVE-2002-1199

The getdbm procedure in ypxfrd allows local users to read arbitrary files, and remote attackers to read databases outside /var/yp, via a directory traversal and symlink attack on the domain and map arguments...

Multiple vendor ypxfrd map handling vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Name: ypxfrd Version: read the details CERT vulnerability note: http://www.kb.cert.org/vuls/id/538033 Author: Janusz Niewiadomski [email protected] Date: October 10, 2002 Issue: ====== Improper arguments validation in ypxfrd may allow local attacker to...