RPC.Statdx.Format.String
Description
This indicates a format string vulnerability in various Linux rpc.statd.
The rpc.statd server is an RPC server that implements the Network Status and Monitor RPC protocol. It is a component of the Network File System (NFS) architecture. Due to inadequate input sanitization, a remote attacker can gain root privilege on a target system.
Affected Products
Conectiva Linux 4.0 to 5.1
Debian Linux 2.2 to 2.3
RedHat Linux 6.0 to 6.2
S.u.S.E. Linux 6.3 to 7.0
Trustix Trustix Secure Linux 1.0 and 1.1
Impact
Attackers can gain root access to the victim system.
Recommended Actions
Apply appropriate patches or Upgrade the system to the latest non-vulnerable version.
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |
Version Updates
Date | Version | Detail |
---|---|---|
2021-01-11 | 16.995 |