Flaw: Sun rwall daemon (rpc.rwalld)

A flaw in the rwall daemon (rpc.rwalld) could be exploited with a format string attack to possibly execute code with the privilege of the rwall daemon. This utility is used to listen to requests from wall, a tool that sends messages to time-sharing terminals. Sun Solaris Versions 2.5.1, 2.6, 7, and 8 are affected by this vulnerability. For more, go to http://www.cert.org/advisories/CA-2002-10.html

Join the newsletter!

Error: Please check your email address.

More about CERT Australia

Show Comments