Format string vulnerability in the _msgout function in rpc.pcnfsd in IBM AIX 6.1, 5.3, and earlier; IBM VIOS 2.1, 1.5, and earlier; NFS/ONCplus B.11.31_09 and earlier on HP HP-UX B.11.11, B.11.23, and B.11.31; and SGI IRIX 6.5 allows remote attackers to execute arbitrary code via an RPC request containing format string specifiers in an invalid directory name.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: hp
Published: 2010-05-20T17:00:00
Updated: 2024-08-07T01:06:52.691Z
Reserved: 2010-03-19T00:00:00
Link: CVE-2010-1039
Vulnrichment
No data.
NVD
Status : Modified
Published: 2010-05-20T17:30:01.350
Modified: 2024-11-21T01:13:29.097
Link: CVE-2010-1039
Redhat
No data.