Signature Detail

Short Name	RPC:RPC.SADMIND:ADM-METHOD-TRAV
Severity	High
Recommended	No
Recommended Action	Drop
Category	RPC
Keywords	RPC.sadmind ADM_METHOD Directory Traversal
Release Date	2006/02/17
Update Number	1213
Supported Platforms	idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+

RPC: RPC.sadmind ADM_METHOD Directory Traversal

This signature detects attempts to exploit a directory traversal vulnerability against Sadmind Remote Procedure Call (RPC) service. A successful attack can lead to arbitrary code execution in the context of logged in user.

Extended Description

An issue in the Sun Solaris 'sadmin' service may allow a remote user to gain unauthorized administrative access.

Affected Products

Sun Solaris 2.6
Sun Solaris 2.6_x86
Sun Solaris 7.0
Sun Solaris 7.0_x86
Sun Solaris 8 Sparc
Sun Solaris 8 X86
Sun Solaris 9 Sparc
Sun Solaris 9 X86
Sun Trusted Solaris 7.0.0
Sun Trusted Solaris 7.0.0 x86
Sun Trusted Solaris 8.0.0
Sun Trusted Solaris 8.0.0 x86

References

BugTraq: 8615
CVE: CVE-2003-0722
URL: http://www.kb.cert.org/vuls/id/41870

Signature Detail

Short Name

Severity

Recommended

Recommended Action

Category

Keywords

Release Date

Update Number

Supported Platforms

RPC: RPC.sadmind ADM_METHOD Directory Traversal

Extended Description

Affected Products

References