Threat Encyclopedia



Caused by an implementation fault in ToolTalk database server, it is possible for a malicious remote client to construct an RPC message that will cause the database server to overflow an automatic variable on the stack. The attacker may gain total control of the database server process.

Affected Products

Xi Graphics Maximum CDE 1.2.3


Allow the attacker gain the full control of the database server process.

Recommended Actions

Upgrade to a non-vulnerable version

CVE References