Vulnerabilities > CVE-2001-1076 - Buffer Overflow vulnerability in SUN Solaris and Sunos
Attack vector
LOCAL Attack complexity
LOW Privileges required
NONE Confidentiality impact
COMPLETE Integrity impact
COMPLETE Availability impact
COMPLETE Summary
Buffer overflow in whodo in Solaris SunOS 5.5.1 through 5.8 allows local users to execute arbitrary code via a long (1) SOR or (2) CFIME environment variable.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| OS | 10 |
Exploit-Db
| description | Solaris 2.6/2.6/7.0/8 whodo Buffer Overflow Vulnerability. CVE-2001-1076 . Local exploit for solaris platform |
| id | EDB-ID:20974 |
| last seen | 2016-02-02 |
| modified | 2001-06-01 |
| published | 2001-06-01 |
| reporter | Pablo Sor |
| source | https://www.exploit-db.com/download/20974/ |
| title | Solaris 2.6/2.6/7.0/8 whodo Buffer Overflow Vulnerability |
Oval
accepted 2007-02-20T13:40:20.231-05:00 class vulnerability contributors name David Proulx organization The MITRE Corporation name Matthew Wojcik organization The MITRE Corporation name Matthew Wojcik organization The MITRE Corporation name Matthew Wojcik organization The MITRE Corporation name Matthew Wojcik organization The MITRE Corporation
description Buffer overflow in whodo in Solaris SunOS 5.5.1 through 5.8 allows local users to execute arbitrary code via a long (1) SOR or (2) CFIME environment variable. family unix id oval:org.mitre.oval:def:34 status accepted submitted 2002-10-17T12:00:00.000-04:00 title Solaris 7 whodo Buffer Overflow Vulnerability version 34 accepted 2007-02-20T13:40:36.167-05:00 class vulnerability contributors name David Proulx organization The MITRE Corporation name Matthew Wojcik organization The MITRE Corporation name Matthew Wojcik organization The MITRE Corporation name Matthew Wojcik organization The MITRE Corporation name Matthew Wojcik organization The MITRE Corporation
description Buffer overflow in whodo in Solaris SunOS 5.5.1 through 5.8 allows local users to execute arbitrary code via a long (1) SOR or (2) CFIME environment variable. family unix id oval:org.mitre.oval:def:47 status accepted submitted 2002-09-17T12:00:00.000-04:00 title Solaris 8 whodo Buffer Overflow Vulnerability version 35
References
- http://archives.neohapsis.com/archives/bugtraq/2001-07/0076.html
- http://www.securityfocus.com/bid/2935
- https://exchange.xforce.ibmcloud.com/vulnerabilities/6802
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A34
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A47