Oval Definition:oval:org.mitre.oval:def:1905
Revision Date:2005-03-09Version:16
Title:dtsession Buffer Overflow via HOME Envvar
Description:Heap-based buffer overflow in dtsession for Solaris 2.5.1 through Solaris 9 allows local users to gain root privileges via a long HOME environment variable.
Family:unixClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2003-0092
Platform(s):Sun Solaris 7
Sun Solaris 8
Sun Solaris 9
Product(s):Common Desktop Environment
Definition Synopsis
  • Solaris 7,8,or 9 installed
  • Solaris 8 Installed
  • OR Solaris 7 Installed
  • OR Solaris 9 Installed
  • AND CDE Desktop Window Manager (SUNWdtwm) installed
  • AND NOT Patch 107702-12 or later installed
  • AND NOT Patch 109354-19 or later installed
  • AND NOT Patch 114497-01 or later installed
    • BACK