Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2003-1067

Overview

Vulnerability Score 7.2 7.2
CVE Id CVE-2003-1067
Last Modified 16 Jan 2014 09:39:35
Published 19 Jun 2003 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2003-1067

Summary

Multiple buffer overflows in the (1) dbm_open function, as used in ndbm and dbm, and the (2) dbminit function in Solaris 2.6 through 9 allow local users to gain root privileges via long arguments to Xsun or other programs that use these functions.

Vulnerable Systems

Operating System

  • Sun Solaris 2.6

  • Sun Solaris 7.0

  • Sun Solaris 8.0

  • Sun Solaris 9.0


References

XF - sun-database-functions-bo(12379)

BID - 7991

CIAC - N-108

SUNALERT - 55420

SECUNIA - 9088

BID - 64758

CONFIRM - http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html

Related Patches

SUN113911-02 Solaris 9 SPARC: Asian SunOS 4.x Binary Compatibility(BCP) patch


Last Updated: 27 May 2016 11:04:10