Insufficient filtering done on user provided input by the rpc.ypupdated RPC process under the Sun Solaris operating system allows remote attackers to cause the process to execute arbitrary commands.

http://www.securiteam.com/exploits/5NP0D2KNQY.html