Sun Remote Services Net Connect Software Local Format String Vulnerability

Sun Remote Services Net Connect Software Local Format String Vulnerability

Sun Remote Services (SRS) Net Connect Software is prone to a local format-string vulnerability because it fails to properly sanitize user-supplied input before passing it as the format specifier to a formatted-printing function.

An attacker can exploit this issue to execute arbitrary machine code with superuser privileges. A successful attack will completely compromise the computer. Failed attempts may cause denial-of-service conditions.