CVE-1999-0493

rpc.statd - Remote Exploit

Title source: llm

Description

rpc.statd allows remote attackers to forward RPC calls to the local operating system via the SM_MON and SM_NOTIFY commands, which in turn could be used to remotely exploit other bugs such as in automountd.

Exploits (1)

exploitdb WORKING POC VERIFIED

by anonymous · cremotesolaris

https://www.exploit-db.com/exploits/19327

View Code ZIP pw:eip

References (5)

[Mailing List] http://marc.info/?l=bugtraq&m=91547759121289&w=2

[Third Party Advisory, US Government Resource] http://www.ciac.org/ciac/bulletins/j-045.shtml

[Vendor Advisory] http://sunsolve.sun.com/pub-cgi/retrieve.pl?doctype=coll&doc=secbull/186&type=0&nav=sec.sba

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/450

[Patch, Third Party Advisory, US Government Resource] http://www.cert.org/advisories/CA-99-05-statd-automountd.html

Scores

EPSS 0.2013

EPSS Percentile 95.5%

Details

Status published

Products (8)

sun/solaris 2.4

sun/solaris 2.5

sun/solaris 2.5.1

sun/solaris 2.6

sun/sunos

sun/sunos 5.3

sun/sunos 5.4

sun/sunos 5.5.1

Published Jun 07, 1999

Tracked Since Feb 18, 2026