Matt wrote:
Hi,
Would this impact SuSE 7.2 and is there a fix for SuSE ?
Regards
Matt
From Subject Received Cc Sent Bcc CERT Advisory CERT Advisory CA-2001-27 Fri 10/5/01 10:05 PM Fri 10/5/01 7:52 PM
Overview
There is a remotely exploitable format string vulnerability in the CDE ToolTalk RPC database service. This vulnerability could be used to crash the service or execute arbitrary code, potentially allowing an intruder to gain root access. This vulnerability is documented in VU#595507.
This document is available from: http://www.cert.org/advisories/CA-2001-27.html
CDE is the X desktop for sun(and other) OS's, ToolTalk AFAIK is sun sepcific.. so I doubt it... but I could be wrong! - Stuart Harris - <stuart at xinitsystems.com> - Xinit Systems, Building linux the way it should be! www.xinitsystems.com