It's possible to execute commands without authentication via TCP/38292 service.
vulners.com/securityvulns/securityvulns:doc:24351
vulners.com/securityvulns/securityvulns:doc:25309
vulners.com/securityvulns/securityvulns:doc:25577
vulners.com/securityvulns/securityvulns:doc:25578