Sun Solaris Multiple Unspecified Local UUCP Buffer Overrun Vulnerabilities
BID:9837
Info
Sun Solaris Multiple Unspecified Local UUCP Buffer Overrun Vulnerabilities
| Bugtraq ID: | 9837 |
| Class: | Boundary Condition Error |
| CVE: | |
| Remote: | No |
| Local: | Yes |
| Published: | Mar 04 2004 12:00AM |
| Updated: | Mar 04 2004 12:00AM |
| Credit: | These issues were announced by Sun. |
| Vulnerable: |
Sun Solaris 9_x86 Sun Solaris 9 Sun Solaris 8_x86 Sun Solaris 8_sparc Sun Solaris 7.0_x86 Sun Solaris 7.0 Sun Solaris 2.6_x86 Sun Solaris 2.6 |
| Not Vulnerable: | |
Discussion
Sun Solaris Multiple Unspecified Local UUCP Buffer Overrun Vulnerabilities
Sun has reported that Solaris is prone to multiple unspecified local buffer overruns in the uucp utility. This could permit an unprivileged local user to execute arbitrary code with the privileges of the uucp user. If the uucp user is compromised, it would also be possible to gain root privileges.
These issues may be related to the vulnerability reported in BID 6600.
Sun has reported that Solaris is prone to multiple unspecified local buffer overruns in the uucp utility. This could permit an unprivileged local user to execute arbitrary code with the privileges of the uucp user. If the uucp user is compromised, it would also be possible to gain root privileges.
These issues may be related to the vulnerability reported in BID 6600.
Exploit / POC
Sun Solaris Multiple Unspecified Local UUCP Buffer Overrun Vulnerabilities
Currently we are not aware of any exploits for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
Currently we are not aware of any exploits for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
Solution / Fix
Sun Solaris Multiple Unspecified Local UUCP Buffer Overrun Vulnerabilities
Solution:
Sun has released patches to address these issues.
Sun Solaris 2.6
Sun Solaris 7.0
Sun Solaris 8_x86
Sun Solaris 2.6_x86
Sun Solaris 8_sparc
Sun Solaris 9
Sun Solaris 9_x86
Sun Solaris 7.0_x86
Solution:
Sun has released patches to address these issues.
Sun Solaris 2.6
Sun Solaris 7.0
Sun Solaris 8_x86
Sun Solaris 2.6_x86
Sun Solaris 8_sparc
Sun Solaris 9
Sun Solaris 9_x86
Sun Solaris 7.0_x86
References
Sun Solaris Multiple Unspecified Local UUCP Buffer Overrun Vulnerabilities
References:
References:
- Sun Alert ID: 57508 (Sun)