'distcc' Access Control Bypass Vulnerability

info
discussion
exploit
solution
references

'distcc' Access Control Bypass Vulnerability

The access controls for the 'distcc' program may malfunction under certain circumstances and may not be enforced.

A remote attacker may potentially exploit this vulnerability to access the affected 'distcc' service, regardless of access-control rules that are set in place.

This vulnerability is addressed in 'distcc' 2.16.