Sun Microsystems Inc. Information for VU#538033
ypxfrd daemon fails to properly validate user supplied arguments in "getdbm" procedure
- Vendor Information Help Date Notified:
- Statement Date:
- Date Updated: 10 Oct 2002
The Solaris ypxfrd(1M) and ypserv(1M) daemons ares affected by this issue in all currently supported versions of Solaris:
Solaris 2.6, 7, 8, and 9
Patches are being generated for all of the above releases. Sun will be publishing Sun Alert #47903 for this issue shortly. The Sun Alert will be available from:
The patches will be availble from:
The vendor has not provided us with any further information regarding this vulnerability.
The CERT/CC has no additional comments at this time.
If you have feedback, comments, or additional information about this vulnerability, please send us email.