rpc.statd allows remote attackers to forward RPC calls to the local operating system via the SM_MON and SM_NOTIFY commands, which in turn could be used to remotely exploit other bugs such as in automountd.
| Software | From | Fixed in |
|---|---|---|
| sun / sunos | 5.3 | 5.3.x |
| sun / solaris | 2.4 | 2.4.x |
| sun / solaris | 2.5.1 | 2.5.1.x |
| sun / solaris | 2.5 | 2.5.x |
| sun / sunos | 5.4 | 5.4.x |
| sun / sunos | 5.5.1 | 5.5.1.x |
| sun / solaris | 2.6 | 2.6.x |