CDE RPC tooltalk Service Multiple Overflows

Critical Nessus Plugin ID 10239


Arbitrary code might be run on the remote host.


The tooltalk RPC service is running.

A possible implementation fault in the ToolTalk object database server may allow an attacker to execute arbitrary commands as root.

*** This warning may be a false positive since the presence of this
*** vulnerability is only accurately identified with local access.


Disable this service.

Plugin Details

Severity: Critical

ID: 10239

File Name: rpc_tooltalk.nasl

Version: $Revision: 1.37 $

Type: remote

Family: RPC

Published: 1999/08/22

Modified: 2014/02/19

Dependencies: 10223, 11936, 12892, 13005

Risk Information

Risk Factor: Critical


Base Score: 10

Temporal Score: 8.3

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Temporal Vector: CVSS2#E:F/RL:OF/RC:C

Vulnerability Information

Required KB Items: rpc/portmap

Exploit Available: true

Exploit Ease: Exploits are available

Vulnerability Publication Date: 1998/09/01

Reference Information

CVE: CVE-1999-0003, CVE-1999-0693

BID: 122, 641

OSVDB: 1073, 4505

CERT-CC: CA-98.11