Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2001-0652

Overview

Vulnerability Score 7.2 7.2
CVE Id CVE-2001-0652
Last Modified 05 Sep 2008 04:24:37
Published 30 Oct 2001 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2001-0652

Summary

Heap overflow in xlock in Solaris 2.6 through 8 allows local users to gain root privileges via a long (1) XFILESEARCHPATH or (2) XUSERFILESEARCHPATH environmental variable.

Vulnerable Systems

Operating System

  • Sun Solaris 8.0


References

BUGTRAQ - 20010810 NSFOCUS SA2001-05 : Solaris Xlock Heap Overflow Vulnerability

XF - solaris-xlock-bo(6967)

BID - 3160


Last Updated: 27 May 2016 10:36:20