Unrestricted Remote Code Execution in distcc 2.x

Unrestricted Remote Code Execution in distcc 2.x

CVE-2004-2687 · HIGH Severity

AV:N/AC:M/AU:N/C:C/I:C/A:C

distcc 2.x, as used in XCode 1.5 and others, when not configured to restrict access to the server port, allows remote attackers to execute arbitrary commands via compilation jobs, which are executed by the server without authorization checks.

Learn more about our Cis Benchmark Audit For Server Software.