CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
AI Score
Confidence
High
EPSS
Percentile
32.8%
Buffer overflow in admintool in Solaris 2.5 through 8 allows local users to gain root privileges via long arguments to (1) the -d command line option, or (2) the PRODVERS argument in the .cdtoc file.
Vendor | Product | Version | CPE |
---|---|---|---|
sun | solaris | 2.6 | cpe:2.3:o:sun:solaris:2.6:*:*:*:*:*:*:* |
sun | solaris | 8.0 | cpe:2.3:o:sun:solaris:8.0:*:sparc:*:*:*:*:* |
sun | solaris | 8.0 | cpe:2.3:o:sun:solaris:8.0:*:x86:*:*:*:*:* |
sun | sunos | 5.5 | cpe:2.3:o:sun:sunos:5.5:*:*:*:*:*:*:* |
sun | sunos | 5.5.1 | cpe:2.3:o:sun:sunos:5.5.1:*:*:*:*:*:*:* |
sun | sunos | 5.7 | cpe:2.3:o:sun:sunos:5.7:*:*:*:*:*:*:* |
online.securityfocus.com/archive/1/270122
www.esecurityonline.com/advisories/eSO2397.asp
www.iss.net/security_center/static/8954.php
www.iss.net/security_center/static/8955.php
www.securityfocus.com/bid/4624
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A67
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A68