Sun Solaris RWall Daemon Syslog Format String Vulnerability

Solaris is the freely available UNIX-derivative operating system developed and distributed by Sun Microsystems.

A format-string vulnerability allows attackers to execute arbitrary code on vulnerable systems. When malicious format strings are sent from one system to another, an insecure 'syslog' call may allow a remote attacker to exploit the call to execute arbitrary code.


 

Privacy Statement
Copyright 2010, SecurityFocus