This script is Copyright (C) 2008-2011 Tenable Network Security, Inc.
'ypupdated -i' is running on this port.
ypupdated is part of NIS and allows a client to update NIS maps.
This old command execution vulnerability was discovered and fixed in
1995. However, it is still possible to run ypupdated in insecure
mode by adding the '-i' option.
Anybody can easily run commands as root on this machine by specifying
an invalid map name that starts with a pipe (|) character. Exploits
have been publicly available since the first advisory.
Remove the '-i' option.
If this option was not set, the rpc.ypupdated daemon is still vulnerable
to the old flaw
contact your vendor for a patch.
Risk factor :
High / CVSS Base Score : 9.3
CVSS Temporal Score : 7.7
Public Exploit Available : true
Nessus Plugin ID: 31683 ()
Bugtraq ID: 174928383
CVE ID: CVE-1999-0208
The cookie settings on this website are set to 'allow all cookies' to give you the very best website experience. If you continue without changing these settings, you consent to this - but if you want, you can opt out of all cookies by clicking below.