Vulnerabilities > CVE-2003-0834 - Unspecified vulnerability in SCO Open Unix and Unixware
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN sco
exploit available
Summary
Buffer overflow in CDE libDtHelp library allows local users to execute arbitrary code via (1) a modified DTHELPUSERSEARCHPATH environment variable and the Help feature, (2) DTSEARCHPATH, or (3) LOGNAME.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
OS | 3 |
Exploit-Db
description Solaris 7/8/9 CDE libDtHelp - Buffer Overflow Non-Exec Stack Privilege Escalation. CVE-2003-0834. Local exploit for Solaris platform id EDB-ID:40729 last seen 2016-11-09 modified 2004-12-04 published 2004-12-04 reporter Exploit-DB source https://www.exploit-db.com/download/40729/ title Solaris 7/8/9 CDE libDtHelp - Buffer Overflow Non-Exec Stack Privilege Escalation description Solaris 7/8/9 CDE libDtHelp - Buffer Overflow dtprintinfo Privilege Escalation. CVE-2003-0834. Local exploit for Solaris platform id EDB-ID:40728 last seen 2016-11-09 modified 2004-12-04 published 2004-12-04 reporter Exploit-DB source https://www.exploit-db.com/download/40728/ title Solaris 7/8/9 CDE libDtHelp - Buffer Overflow dtprintinfo Privilege Escalation
Oval
accepted | 2005-06-29T06:49:00.000-04:00 | ||||||||
class | vulnerability | ||||||||
contributors |
| ||||||||
description | Buffer overflow in CDE libDtHelp library allows local users to execute arbitrary code via (1) a modified DTHELPUSERSEARCHPATH environment variable and the Help feature, (2) DTSEARCHPATH, or (3) LOGNAME. | ||||||||
family | unix | ||||||||
id | oval:org.mitre.oval:def:5141 | ||||||||
status | accepted | ||||||||
submitted | 2005-01-19T12:00:00.000-04:00 | ||||||||
title | CDE libDtHelp Buffer Overflow | ||||||||
version | 36 |
Seebug
bulletinFamily exploit description No description provided by source. id SSV:62957 last seen 2017-11-19 modified 2014-07-01 published 2014-07-01 reporter Root source https://www.seebug.org/vuldb/ssvid-62957 title Solaris 7/8/9 CDE LibDTHelp - Local Buffer Overflow Exploit (2) bulletinFamily exploit description No description provided by source. id SSV:9100 last seen 2017-11-19 modified 2008-07-16 published 2008-07-16 reporter Root source https://www.seebug.org/vuldb/ssvid-9100 title Solaris 7/8/9 CDE LibDTHelp Local Buffer Overflow Exploit bulletinFamily exploit description No description provided by source. id SSV:5359 last seen 2017-11-19 modified 2006-10-28 published 2006-10-28 reporter Root source https://www.seebug.org/vuldb/ssvid-5359 title Solaris 7/8/9 CDE LibDTHelp Local Buffer Overflow Exploit (2)
References
- ftp://patches.sgi.com/support/free/security/advisories/20040801-01-P
- ftp://patches.sgi.com/support/free/security/advisories/20040801-01-P
- http://archives.neohapsis.com/archives/hp/2003-q4/0047.html
- http://archives.neohapsis.com/archives/hp/2003-q4/0047.html
- http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert/57414
- http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert/57414
- http://www.idefense.com/application/poi/display?id=134&type=vulnerabilities&flashstatus=false
- http://www.idefense.com/application/poi/display?id=134&type=vulnerabilities&flashstatus=false
- http://www.kb.cert.org/vuls/id/575804
- http://www.kb.cert.org/vuls/id/575804
- http://www.securityfocus.com/bid/8973
- http://www.securityfocus.com/bid/8973
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5141
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5141