CVE-2002-0885

Name of the Vulnerable Software and Affected Versions: in.rarpd on Solaris (affected versions not specified) in.rarpd on Caldera UnixWare (affected versions not specified) in.rarpd on Open UNIX (affected versions not specified)

Description: The issue is related to multiple buffer overflows in the in.rarpd service, which is an ARP server. This allows remote attackers to execute arbitrary code. The buffer overflows may occur via the syserr and error functions.

Recommendations: For in.rarpd on Solaris, consider disabling the service until a patch is available. For in.rarpd on Caldera UnixWare, restrict access to the vulnerable service to minimize the risk of exploitation. For in.rarpd on Open UNIX, avoid using the vulnerable functions syserr and error in the in.rarpd service until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.