CDE RPC tooltalk Service Multiple Overflows

Critical Nessus Plugin ID 10239

Synopsis

Arbitrary code might be run on the remote host.

Description

The tooltalk RPC service is running.

A possible implementation fault in the ToolTalk object database server may allow an attacker to execute arbitrary commands as root.

*** This warning may be a false positive since the presence of this
*** vulnerability is only accurately identified with local access.

Solution

Disable this service.

Plugin Details

Severity: Critical

ID: 10239

File Name: rpc_tooltalk.nasl

Version: 1.39

Type: remote

Family: RPC

Published: 1999/08/22

Updated: 2018/07/27

Dependencies: 11936, 10223

Risk Information

Risk Factor: Critical

CVSS v2.0

Base Score: 10

Temporal Score: 7.8

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Temporal Vector: CVSS2#E:POC/RL:OF/RC:C

Vulnerability Information

Required KB Items: rpc/portmap

Exploit Available: true

Exploit Ease: Exploits are available

Vulnerability Publication Date: 1998/09/01

Reference Information

CVE: CVE-1999-0003, CVE-1999-0693

BID: 122, 641

CERT-CC: CA-98.11