Oval Definition:	oval:org.mitre.oval:def:2164
Revision Date: 2007-09-27 Version: 16 Title: Security Vulnerability Due to Buffer Overflow in The format(1M) Command May Allow Privilege Elevation For Certain RBAC Profiles Description: Buffer overflow in the format command in Solaris 8, 9, and 10 allows local users with access to format (such as the "File System Management" RBAC profile) to execute arbitrary code via unknown vectors, a different vulnerability than CVE-2006-4307. Family: unix Class: vulnerability Status: ACCEPTED Reference(s): CVE-2006-4319 Platform(s): Sun Solaris 10 Sun Solaris 8 Sun Solaris 9 Product(s): Definition Synopsis Solaris 8 (SPARC) meets Sun Alert 102519 Solaris 8 (SPARC) is installed AND NOT Patch 108975-10 or later installed OR Solaris 9 (SPARC) meets Sun Alert 102519 Solaris 9 (SPARC) is installed AND NOT Patch 113072-08 or later installed OR Solaris 10 (SPARC) meets Sun Alert 102519 Solaris 10 (SPARC) is installed AND NOT Patch 118833-18 or later installed OR Solaris 8 (x86) meets Sun Alert 102519 Solaris 8 (x86) is installed AND NOT Patch 108976-10 or later installed OR Solaris 9 (x86) meets Sun Alert 102519 Solaris 9 (x86) is installed AND NOT Patch 114423-07 or later installed OR Solaris 10 (x86) meets Sun Alert 102519 Solaris 10 (x86) is installed AND NOT Patch 118997-09 or later installed
BACK