Vulnerability in Cde

CVE-1999-0687

The ToolTalk ttsession daemon uses weak RPC authentication, which allows a remote attacker to execute commands.

EPSS: 0.022 (80.4th percentile) — read the EPSS interpretation.

Affected products

Cde — versions 1.0.1, 1.0.2, 1.1
Digital Unix — versions 4.0d, 4.0f
Ibm Aix — versions 4.1, 4.1.1, 4.1.2
Sun Solaris — versions 2.4, 2.5, 2.5.1
Sun Sunos — versions 4.1.3u1, 4.1.4, 5.3
N/a — versions n/a

References

cve@mitre.org (government-resource, third-party-advisory, x_refsource_CIAC)
cve@mitre.org (x_refsource_HP, vendor-advisory)
cve@mitre.org (vendor-advisory, x_refsource_SUN)
cve@mitre.org (vdb-entry, x_refsource_BID)