Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2002-0573

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2002-0573
Last Modified 05 Sep 2008 04:28:22
Published 03 Jul 2002 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2002-0573

Summary

Format string vulnerability in RPC wall daemon (rpc.rwalld) for Solaris 2.5.1 through 8 allows remote attackers to execute arbitrary code via format strings in a message that is not properly provided to the syslog function when the wall command cannot be executed.

Vulnerable Systems

Operating System

  • Sun Solaris 2.6

  • Sun Solaris 7.0

  • Sun Solaris 8.0


References

CERT - CA-2002-10

CERT-VN - VU#638099

XF - solaris-rwall-format-string(8971)

BUGTRAQ - 20020430 Adivosry + Exploit for Remote Root Hole in Default Installation of Popular Commercial Operating System

BID - 4639

OSVDB - 778

VULNWATCH - 20020430 [VulnWatch] Adivosry + Exploit for Remote Root Hole in Default Installation of Popular Commercial Operating System


Last Updated: 27 May 2016 10:36:59