Published: 03/01/2003 Updated: 30/10/2018

CVSS v2 Base Score: 2.1 | Impact Score: 2.9 | Exploitability Score: 3.9

VMScore: 215

Vector: AV:L/AC:L/Au:N/C:N/I:P/A:N

rpc.walld (wall daemon) for Solaris 2.6 through 9 allows local users to send messages to logged on users that appear to come from arbitrary user IDs by closing stderr before executing wall, then supplying a spoofed from header.

Vulnerable Product	Search on Vulmon	Subscribe to Product
sun sunos 5.7
sun solaris 7.0
sun sunos 5.8
sun solaris 8.0
sun sunos 5.5.1
sun solaris 2.5.1
sun solaris 9.0
sun solaris 2.6
sun sunos -

source: wwwsecurityfocuscom/bid/6509/info Solaris is the freely available UNIX Operating System variant distributed by Sun Microsystems The wall client packaged with Solaris makes assumptions about a user's environment when the client is executed The assumption is made that if the file descriptor of stderr points to a tty when wall is ...

NVD-CWE-Other http://www.securityfocus.com/archive/1/305105 http://sunsolve.sun.com/search/document.do?assetkey=1-26-51980-1 http://www.kb.cert.org/vuls/id/944241 http://secunia.com/advisories/7825/http://www.securityfocus.com/bid/6509 http://www.securitytracker.com/id?1005882 http://www.securitytracker.com/id?1006682 https://exchange.xforce.ibmcloud.com/vulnerabilities/11608 https://nvd.nist.gov https://www.exploit-db.com/exploits/22120/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2003-1071

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect