IRIX rpc.yppasswdd Unspecified Remote Overflow

This script is Copyright (C) 2002-2014 Tenable Network Security, Inc.


Synopsis :

Arbitrary code may be run on the remote host.

Description :

The remote RPC service #100009 (yppasswdd) is vulnerable to a buffer
overflow which allows any user to obtain a root shell on this host.

Note: This issue is different than the one described in CVE-2002-0357
/ SGI advisory #20020601-01-P.

Solution :

Disable this service if you don't use it.

Risk factor :

High / CVSS Base Score : 9.3
(CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C)

Family: RPC

Nessus Plugin ID: 11021 ()

Bugtraq ID:

CVE ID: