Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
4.6
CVSSv2

CVE-2001-0595

Published: 02/08/2001 Updated: 30/10/2018
CVSS v2 Base Score: 4.6 | Impact Score: 6.4 | Exploitability Score: 3.9
VMScore: 470
Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P
Subscribe to Sun

Vulnerability Summary

Buffer overflow in the kcsSUNWIOsolf.so library in Solaris 7 and 8 allows local malicious users to execute arbitrary commands via the KCMS_PROFILES environment variable, e.g. as demonstrated using the kcms_configure program.

Vulnerable Product Search on Vulmon Subscribe to Product

sun sunos 5.7

sun sunos 5.8

Exploits

Exploit DB: Solaris 2.5/2.6/7.0/8 - kcms_configure KCMS_PROFILES Buffer Overflow (2)
/* source: wwwsecurityfocuscom/bid/2605/info The Kodak Color Management System configuration tool 'kcms_configure' is vulnerable to a buffer overflow that could yield root privileges to an attacker The bug exists in the KCMS_PROFILES environment variable parser in a shared library 'kcsSUNWIOsolfso' used by kcms_configure If an overl ...
Exploit DB: Solaris 2.5/2.6/7.0/8 - kcms_configure KCMS_PROFILES Buffer Overflow (1)
/* source: wwwsecurityfocuscom/bid/2605/info The Kodak Color Management System configuration tool 'kcms_configure' is vulnerable to a buffer overflow that could yield root privileges to an attacker The bug exists in the KCMS_PROFILES environment variable parser in a shared library 'kcsSUNWIOsolfso' used by kcms_configure If an overly ...

References

NVD-CWE-Otherhttp://archives.neohapsis.com/archives/bugtraq/2001-04/0203.htmlhttp://www.securityfocus.com/bid/2605https://exchange.xforce.ibmcloud.com/vulnerabilities/6365https://nvd.nist.govhttps://www.exploit-db.com/exploits/20768/
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
IMAPCVE-2024-4367server-side request forgeryinformation disclosureCVE-2024-34342CVE-2024-4281CVE-2024-3507CVE-2024-25560CVE-2024-34574
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook