Sun Solaris Buffer Overflow in Xsun and Xprt Let Local Users Gain Elevated Privileges
|
|
SecurityTracker Alert ID: 1014976
|
|
SecurityTracker URL: http://securitytracker.com/id?1014976
|
|
CVE Reference: GENERIC-MAP-NOMATCH
(Links to External Site)
|
Date: Sep 27 2005
|
Impact: Execution of arbitrary code via local system, Root access via local system, User access via local system
|
Fix Available: Yes
Vendor Confirmed: Yes
|
Description: A vulnerability was reported in Xsun and Xprt on Sun Solaris. A local user can gain elevated privileges.
A local user can trigger a buffer overflow in the Xsun(1) and Xprt(1) commands to execute arbitrary code with elevated privileges
of the Xsun(1) or Xprt(1) commands.
Sun credits Eric Sheridan of Towson University with reporting this vulnerability.
|
Impact: A local user can execute arbitrary code with the privileges of the Xsun(1) or Xprt(1) commands.
|
Solution: Sun has issued the following fixes.
SPARC Platform
* Solaris 8 with patch 108652-93 or later
* Solaris 9 with patch
112785-50 or later
* Solaris 10 with patch 119059-05 or later
x86 Platform
* Solaris 8 with patch 108653-82 or later
* Solaris 9 with patch 112786-39 or later
* Solaris 10 with patch 119060-05 or later
A final fix for Solaris 7 is pending.
|
Vendor URL: sunsolve.sun.com/search/document.do?assetkey=1-26-101800-1 (Links to External Site)
|
Cause: Boundary error
|
Underlying OS: UNIX (Solaris - SunOS)
|
|
Message History:
None.
|
Source Message Contents
|
Date: Tue, 27 Sep 2005 01:47:53 -0400
Subject: http://sunsolve.sun.com/search/document.do?assetkey=1-26-101800-1
|
Sun Alert ID: 101800
Synopsis: Security Vulnerability in the Xsun(1) and Xprt(1) Commands
Category: Security
Product: Solaris 9 Operating System, Solaris 10 Operating System, Solaris 7 Operating
System, Solaris 8 Operating System
BugIDs: 6265045
Avoidance: Patch, Reconfiguration
State: Workaround
Date Released: 26-Sep-2005
Date Closed:
Date Modified:
|
|
