Sun Rpc.cmsd Overflow Network Vulnerability

Summary

The remote Sun rpc.cmsd has integer overflow problem in xdr_array. An attacker may use this flaw to execute arbitrary code on this host with the privileges rpc.cmsd is running as (typically, root), by sending a specially crafted request to this service.

Solution

We suggest that you disable this service and apply a new patch.

Severity

Classification

CVE CVE-2002-0391

CVSS	Base Score: 10.0 AV:N/AC:L/Au:N/C:C/I:C/A:C

Related Vulnerabilities

CDE ToolTalk RPC Database Server Multiple Vulnerabilities
Sun rpc.cmsd overflow
Calendar Manager Service rpc.cmsd Service Detection
Nfs-utils rpc.statd Multiple Remote Format String Vulnerabilities
rpc.ypupdated remote execution

Take action and discover your vulnerabilities