Compaq Computer Corporation Information for VU#34043

rpc.statd vulnerable to remote root compromise via format string stack overwrite


Not Affected

Vendor Statement

Copyright 2000 Compaq Computer Corporation. All rights reserved.

SOURCE: Compaq Computer Corporation
Compaq Services
Software Security Response Team USA
re: input validation problem in rpc.statd
This reported problem has not been found to affect the as shipped, Compaq Tru64/UNIX Operating Systems Software.
- Compaq Computer Corporation

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Vendor References



The CERT/CC has no additional comments at this time.

If you have feedback, comments, or additional information about this vulnerability, please send us email.