Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-2071

Overview

Vulnerability Score 4.6 4.6
CVE Id CVE-2005-2071
Last Modified 07 Mar 2011 12:00:00
Published 29 Jun 2005 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2005-2071

Summary

traceroute in Sun Solaris 10 on x86 systems allows local users to execute arbitrary code with PRIV_NET_RAWACCESS privileges via (1) a large number of -g arguments or (2) a malformed -s argument with a trailing . (dot).

Vulnerable Systems

Operating System

  • Sun Solaris 10.0


References

VUPEN - ADV-2005-2564

BID - 14049

SUNALERT - 102060

SECTRACK - 1015261

SECUNIA - 17708

BUGTRAQ - 20050624 Re: Solaris 10 /usr/sbin/traceroute vulnerabilities

BUGTRAQ - 20050624 Re: [Full-disclosure] Solaris 10 /usr/sbin/traceroute vulnerabilities

BUGTRAQ - 20050624 Solaris 10 /usr/sbin/traceroute vulnerabilities


Last Updated: 27 May 2016 10:40:22