Published: 03/05/2005 Updated: 18/10/2016

CVSS v2 Base Score: 7.2 | Impact Score: 10 | Exploitability Score: 3.9

VMScore: 725

Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C

Format string vulnerability in ArcGIS for ESRI ArcInfo Workstation 9.0 allows local users to gain privileges via format string specifiers in the ARCHOME environment variable to (1) wservice or (2) lockmgr.

Vulnerable Product	Search on Vulmon	Subscribe to Product
esri arcgis 9.0
esri arcinfo workstation 9.0

/** ESRI 9x Arcgis local root format string exploit ** ** Copyright Kevin Finisterre and John H ** Bug found by Kevin Finisterre <kf@digitalmunitioncom> ** Exploit by John H <johnh@digitalmunitioncom> ** ** We overwrite the thr_jmp_table ** Tested on solaris 10 **/ #include <dlfcnh> #include <fcntlh> #include <lin ...

NVD-CWE-Other http://www.digitalmunition.com/DMA%5B2005-0425a%5D.txt http://securitytracker.com/id?1013852 http://secunia.com/advisories/15196 http://support.esri.com/index.cfm?fa=downloads.patchesServicePacks.viewPatch&PID=14&MetaID=1015 http://marc.info/?l=full-disclosure&m=111489411524630&w=2 https://nvd.nist.gov https://www.exploit-db.com/exploits/972/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2005-1394

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect