Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2001-1076

Overview

Vulnerability Score 7.2 7.2
CVE Id CVE-2001-1076
Last Modified 10 Sep 2008 03:09:37
Published 05 Jul 2001 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2001-1076

Summary

Buffer overflow in whodo in Solaris SunOS 5.5.1 through 5.8 allows local users to execute arbitrary code via a long (1) SOR or (2) CFIME environment variable.

Vulnerable Systems

Operating System

  • Sun Solaris 2.5

  • Sun Solaris 2.5.1

  • Sun Solaris 2.6

  • Sun Solaris 7.0

  • Sun Solaris 8.0

  • Sunos 5.5.1

  • Sunos 5.7

  • Sunos 5.8


References

BID - 2935

BUGTRAQ - 20010705 Solaris whodo Vulnerability

XF - solaris-whodo-bo(6802)


Last Updated: 27 May 2016 10:36:30