Vulnerabilities > CVE-2001-0594 - Buffer Overflow vulnerability in SUN Solaris and Sunos
Attack vector
LOCAL Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
kcms_configure as included with Solaris 7 and 8 allows a local attacker to gain additional privileges via a buffer overflow in a command line argument.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
OS | 4 |
Exploit-Db
description Solaris 7/8 kcms_configure Command-Line Buffer Overflow Vulnerability (1). CVE-2001-0594 . Local exploit for solaris platform id EDB-ID:20740 last seen 2016-02-02 modified 2001-04-09 published 2001-04-09 reporter Riley Hassell source https://www.exploit-db.com/download/20740/ title Solaris 7/8 kcms_configure Command-Line Buffer Overflow Vulnerability 1 description Solaris 7/8 kcms_configure Command-Line Buffer Overflow Vulnerability (2). CVE-2001-0594 . Local exploit for solaris platform id EDB-ID:20741 last seen 2016-02-02 modified 2001-04-09 published 2001-04-09 reporter Adam Slattery source https://www.exploit-db.com/download/20741/ title Solaris 7/8 kcms_configure Command-Line Buffer Overflow Vulnerability 2
Oval
accepted 2016-02-08T10:00:00.000-05:00 class vulnerability contributors name David Proulx organization The MITRE Corporation description kcms_configure as included with Solaris 7 and 8 allows a local attacker to gain additional privileges via a buffer overflow in a command line argument. family unix id oval:org.mitre.oval:def:65 status accepted submitted 2002-09-17T12:00:00.000-04:00 title Solaris 7 kcms_configure Command-Line Buffer Overflow version 35 accepted 2016-02-08T10:00:00.000-05:00 class vulnerability contributors name David Proulx organization The MITRE Corporation description kcms_configure as included with Solaris 7 and 8 allows a local attacker to gain additional privileges via a buffer overflow in a command line argument. family unix id oval:org.mitre.oval:def:7 status accepted submitted 2002-09-17T12:00:00.000-04:00 title Solaris 8 kcms_configure Command-Line Buffer Overflow version 35
References
- http://archives.neohapsis.com/archives/bugtraq/2001-04/0140.html
- http://www.securityfocus.com/bid/2558
- https://exchange.xforce.ibmcloud.com/vulnerabilities/6359
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A65
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7