Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2001-0595

Overview

Vulnerability Score 4.6 4.6
CVE Id CVE-2001-0595
Last Modified 05 Sep 2008 04:24:29
Published 02 Aug 2001 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2001-0595

Summary

Buffer overflow in the kcsSUNWIOsolf.so library in Solaris 7 and 8 allows local attackers to execute arbitrary commands via the KCMS_PROFILES environment variable, e.g. as demonstrated using the kcms_configure program.

Vulnerable Systems

Operating System

  • Sun Solaris 7.0

  • Sun Solaris 8.0


References

XF - solaris-kcssunwiosolf-bo(6365)

BID - 2605

BUGTRAQ - 20010411 [LSD] Solaris kcsSUNWIOsolf.so and dtsession vulnerabilities


Last Updated: 27 May 2016 10:36:20