|
|
SunOS portmap Vulnerability
Under some versions of SunOS the portmapper will forward RPC request to local daemons for remote clients, this in effect makes the outside request look like a local one because it has been handed to portampper by a local daemon. This allows a remote user to ask portmap to obtain the NIS maps from the local ypserv as well as launch other attacks such as mounting filesytems by proxy. This is Sun Bug ID 1082319. |
|
Privacy Statement |