[原文]Buffer overflow in ypserv in Mandrake Linux 7.1 and earlier, and possibly other Linux operating systems, allows an attacker to gain root privileges when ypserv is built without a vsyslog() function.
A remote overflow exists in ypserv. The server fails to properly check bounds resulting in an overflow. With a specially crafted request, an attacker can cause arbitrary code execution resulting in a loss of integrity.
An upgrade is required as there are no known workarounds.