CVE-2010-2061

Name of the Vulnerable Software and Affected Versions rpcbind version 0.2.0

Description The issue is related to the improper validation of temporary files /tmp/portmap.xdr and /tmp/rpcbind.xdr by rpcbind. An attacker can create these files before the daemon is started, potentially leading to exploitation.

Recommendations For rpcbind version 0.2.0, consider restricting access to the /tmp directory to prevent attackers from creating malicious files until a patch is available. As a temporary workaround, monitor the /tmp directory for suspicious files, such as portmap.xdr and rpcbind.xdr, and remove them before starting the rpcbind daemon.