Format string vulnerability in RPC wall daemon (rpc.rwalld) for Solaris 2.5.1 through 8 allows remote attackers to execute arbitrary code via format strings in a message that is not properly provided to the syslog function when the wall command cannot be executed.

Threat-Mapped Scoring

Score: 1.8

Priority: P4 - Informational (Low)

• S9 – Sabotage of System/App

EPSS

Score: 0.47418
Percentile: 0.97569

CVSS Scoring

Affected Products

• cpe:2.3:o:sun:solaris:2.6:*:*:*:*:*:*:*
• cpe:2.3:o:sun:solaris:7.0:*:x86:*:*:*:*:*
• cpe:2.3:o:sun:solaris:8.0:*:x86:*:*:*:*:*
• cpe:2.3:o:sun:sunos:-:*:*:*:*:*:*:*
• cpe:2.3:o:sun:sunos:5.7:*:*:*:*:*:*:*
• cpe:2.3:o:sun:sunos:5.8:*:*:*:*:*:*:*

← Back to Home