Vulnerabilities > CVE-2001-0595 - Buffer Overflow vulnerability in SUN Sunos 5.7/5.8

047910
CVSS 4.6 - MEDIUM
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL
local
low complexity
sun
exploit available
NVD
Published: 2001-08-02
Updated: 2018-10-30

Summary

Buffer overflow in the kcsSUNWIOsolf.so library in Solaris 7 and 8 allows local attackers to execute arbitrary commands via the KCMS_PROFILES environment variable, e.g. as demonstrated using the kcms_configure program.

Vulnerable Configurations

Part Description Count
OS
Sun
2

Exploit-Db

  • descriptionSolaris 2.5/2.6/7.0/8 kcms_configure KCMS_PROFILES Buffer Overflow Vulnerability (2). CVE-2001-0595. Local exploit for solaris platform
    idEDB-ID:20768
    last seen2016-02-02
    modified1999-12-01
    published1999-12-01
    reporterLast Stage of Delirium
    sourcehttps://www.exploit-db.com/download/20768/
    titleSolaris 2.5/2.6/7.0/8 kcms_configure KCMS_PROFILES Buffer Overflow Vulnerability 2
  • descriptionSolaris 2.5/2.6/7.0/8 kcms_configure KCMS_PROFILES Buffer Overflow Vulnerability (1). CVE-2001-0595. Local exploit for solaris platform
    idEDB-ID:20767
    last seen2016-02-02
    modified1999-12-01
    published1999-12-01
    reporterLast Stage of Delirium
    sourcehttps://www.exploit-db.com/download/20767/
    titleSolaris 2.5/2.6/7.0/8 kcms_configure KCMS_PROFILES Buffer Overflow Vulnerability 1

References