Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-0800

Overview

Vulnerability Score 4.6 4.6
CVE Id CVE-2004-0800
Last Modified 10 Sep 2008 03:27:48
Published 24 Aug 2004 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2004-0800

Summary

Format string vulnerability in CDE Mailer (dtmail) on Solaris 8 and 9 allows local users to gain privileges via format strings in the argv[0] value.

Vulnerable Systems

Operating System

  • Sun Solaris 8.0

  • Sun Solaris 9.0

Application

  • Avaya Call Management System Server 11.0

  • Avaya Call Management System Server 12.0

  • Avaya Call Management System Server 9.0

  • Sun Dtmail


References

CERT-VN - VU#928598

IDEFENSE - 20040824 CDE Mailer argv[0] Format String Vulnerability

XF - dtmail-argv-format-string(17095)

BID - 11027

CIAC - O-202


Last Updated: 27 May 2016 10:38:46