CDE RPC tooltalk Service Multiple Overflows

critical Nessus Plugin ID 10239

Synopsis

Arbitrary code might be run on the remote host.

Description

The tooltalk RPC service is running.

A possible implementation fault in the ToolTalk object database server may allow an attacker to execute arbitrary commands as root.

*** This warning may be a false positive since the presence of this
*** vulnerability is only accurately identified with local access.

Solution

Disable this service.

Plugin Details

Severity: Critical

ID: 10239

File Name: rpc_tooltalk.nasl

Version: 1.39

Type: remote

Family: RPC

Published: 8/22/1999

Updated: 7/27/2018

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 6.7

CVSS v2

Risk Factor: Critical

Base Score: 10

Temporal Score: 7.8

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Vulnerability Information

Required KB Items: rpc/portmap

Exploit Available: true

Exploit Ease: Exploits are available

Vulnerability Publication Date: 9/1/1998

Reference Information

CVE: CVE-1999-0003, CVE-1999-0693

BID: 122, 641

CERT-CC: CA-98.11