Oval Definition:oval:org.mitre.oval:def:1909
Revision Date:2007-09-27Version:16
Title:Security Vulnerabilities in Solaris ld.so.1(1) may Lead to Execution of Arbitrary Code with Elevated Privileges
Description:Stack-based buffer overflow in ld.so.1 in Sun Solaris 8, 9, and 10 allows local users to execute arbitrary code via large precision padding values in a format string specifier in the format parameter of the doprf function. NOTE: this issue normally does not cross privilege boundaries, except in cases of external introduction of malicious message files, or if it is leveraged with other vulnerabilities such as CVE-2006-6494.
Family:unixClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2006-6495
Platform(s):Sun Solaris 10
Sun Solaris 8
Sun Solaris 9
Product(s):
Definition Synopsis
  • Solaris 8 (SPARC) meets Sun Alert 102724
  • Solaris 8 (SPARC) is installed
  • AND NOT Patch 109147-42 or later installed
  • OR Solaris 9 (SPARC) meets Sun Alert 102724
  • Solaris 9 (SPARC) is installed
  • AND NOT Patch 112963-27 or later installed
  • OR Solaris 10 (SPARC) meets Sun Alert 102724
  • Solaris 10 (SPARC) is installed
  • AND NOT Patch 124922-01 or later installed
  • OR Solaris 8 (x86) meets Sun Alert 102724
  • Solaris 8 (x86) is installed
  • AND NOT Patch 109148-41 or later installed
  • OR Solaris 9 (x86) meets Sun Alert 102724
  • Solaris 9 (x86) is installed
  • AND NOT Patch 113986-22 or later installed
  • OR Solaris 10 (x86) meets Sun Alert 102724
  • Solaris 10 (x86) is installed
  • AND NOT Patch 124923-01 or later installed
    • BACK