Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2003-0609

Overview

Vulnerability Score 7.2 7.2
CVE Id CVE-2003-0609
Last Modified 10 Sep 2008 03:19:49
Published 27 Aug 2003 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2003-0609

Summary

Stack-based buffer overflow in the runtime linker, ld.so.1, on Solaris 2.6 through 9 allows local users to gain root privileges via a long LD_PRELOAD environment variable.

Vulnerable Systems

Operating System

  • Sun Solaris 2.6

  • Sun Solaris 7.0

  • Sun Solaris 8.0

  • Sun Solaris 9.0


References

BUGTRAQ - 20030729 Solaris ld.so.1 buffer overflow

IDEFENSE - 20030729 Buffer Overflow in Sun Solaris Runtime Linker

SUNALERT - 55680

XF - sun-ldso1-ldpreload-bo(12755)

OSVDB - 8722


Last Updated: 27 May 2016 10:37:58