Vulnerabilities > CVE-2004-0481 - Unspecified vulnerability in SUN Solaris and Sunos

CVSS 2.1 - LOW

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

PARTIAL

Availability impact

NONE

local

low complexity

sun

NVD

Published: 2005-02-23

Updated: 2018-10-30

Summary

The logging feature in kcms_configure in the KCMS package on Solaris 8 and 9, and possibly other versions, allows local users to corrupt arbitrary files via a symlink attack on the KCS_ClogFile file.

Vulnerable Configurations

Part	Description	Count
OS	Sun SUN Solaris 8.0 SUN Solaris 9.0 SUN Sunos 5.8	4

References

http://sunsolve.sun.com/search/document.do?assetkey=1-26-57706-1
http://www.idefense.com/application/poi/display?id=206&type=vulnerabilities