Alias(es)ToolTalk.ttdbserverd.TCP, ToolTalk.ttdbserverd.UDP |
Release DateSep 11, 2006 |
Severityhigh |
ImpactAttackers can gain access to the victim system and execute arbitrary commands. |
DescriptionThis indicates detection of a request sent to the Common Desktop Environment (CDE) ToolTalk Remote Procedure Call (RPC) database server.The ToolTalk architecture allows custom programs to communicate with each other over a network. ToolTalk-enabled programs communicate using RCP and are managed by the ToolTalk database server (rpc.ttdbserverd). There are many vulnerabilities in rpc.ttdbserverd that allow attackers to gain access to a target system or execute arbitrary code on it via specially-crafted RPC messages. |
Affected ProductsAny unprotected Unix based system with tooltalk database server enabled is vulnerable. |
Recommended ActionsApply the appropriate patch. Please see the References for more information. |
Coverage IPS
VCM |
Common Vulnerabilities and Exposures (CVE)CVE-2002-0679CVE-1999-0693 CVE-1999-0687 CVE-1999-0003 CVE-1999-1075 CVE-2002-0677 CVE-2001-0717 CVE-2009-2727 |
Reference/shttp://www.securityfocus.com/bid/35419 (BugTraq)http://www.cert.org/advisories/CA-2001-27.html http://www.cert.org/advisories/CA-2002-26.html http://www.securityfocus.com/bid/5444 (BugTraq) http://www.securityfocus.com/bid/3382 (BugTraq) |
