CVE-1999-1588

Name of the Vulnerable Software and Affected Versions: Sun Solaris x86 versions 2.4 through 2.5.1

Description: The issue allows remote attackers to execute arbitrary code as root via a long string beginning with "NLPS:002:002:" to the listen port, TCP port 2766. This is a buffer overflow in the nlps server.

Recommendations: For Sun Solaris x86 versions 2.4 through 2.5.1, consider restricting access to the listen port, TCP port 2766, to minimize the risk of exploitation. As a temporary workaround, consider disabling the nlps server until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.