yppasswdd.nasl

来自「漏洞扫描源码,可以扫描linux,windows,交换机路由器」· NASL 代码 · 共 41 行

#
# This script was written by Renaud Deraison <deraison@cvs.nessus.org>
#
#
# This script is released under the GPLv2
#
# kst-depend-rpc

if(description)
{
 script_id(80035);
 script_bugtraq_id(2763);
script_cve_id("CVE-2001-0779");
 script_version ("$Revision: 1.25 $");

 
 name["english"] = "yppasswdd overflow";
 name["francais"] = "yppasswdd overflow";
 
 script_name(english:name["english"],
 	     francais:name["francais"]);
 
 desc["english"] = "
The remote RPC service 100009 (yppasswdd) is vulnerable
to a buffer overflow which allows any user to obtain a root
shell on this host.

Solution : disable this service if you don't use
it, or contact Sun for a patch
Risk factor : High";

 script_description(english:desc["english"]);
 
 summary["english"] = "heap overflow through yppasswdd";
 script_summary(english:summary["english"]);
 
 script_category(ACT_MIXED_ATTACK); 
 
 script_copyright(english:"This script is Copyright (C) 2001 Renaud Deraison");
 family["english"] = "Gain root remotely";
 family["francais"] = "Passer root