Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2002-0033

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2002-0033
Last Modified 05 Sep 2008 04:27:00
Published 29 May 2002 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2002-0033

Summary

Heap-based buffer overflow in cfsd_calloc function of Solaris cachefsd allows remote attackers to execute arbitrary code via a request with a long directory and cache name.

Vulnerable Systems

Operating System

  • Sun Solaris 2.5.1

  • Sun Solaris 2.6

  • Sun Solaris 7.0

  • Sun Solaris 8.0


References

CERT - CA-2002-11

CERT-VN - VU#635811

CONFIRM - http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert%2F44309

BUGTRAQ - 20020505 [LSD] Solaris cachefsd remote buffer overflow vulnerability

BID - 4674

XF - solaris-cachefsd-name-bo(8999)


Last Updated: 27 May 2016 10:36:45