Format string vulnerability in the _msgout function in rpc.pcnfsd in IBM AIX 6.1, 5.3, and earlier; IBM VIOS 2.1, 1.5, and earlier; NFS/ONCplus B.11.31_09 and earlier on HP HP-UX B.11.11, B.11.23, and B.11.31; and SGI IRIX 6.5 allows remote attackers to execute arbitrary code via an RPC request containing format string specifiers in an invalid directory name.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: hp

Published: 2010-05-20T17:00:00

Updated: 2024-08-07T01:06:52.691Z

Reserved: 2010-03-19T00:00:00

Link: CVE-2010-1039

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2010-05-20T17:30:01.350

Modified: 2024-11-21T01:13:29.097

Link: CVE-2010-1039

cve-icon Redhat

No data.