Oval Definition:oval:org.mitre.oval:def:2592
Revision Date:2010-09-20Version:20
Title:KCMS KCS_OPEN_PROFILE File Disclosure Vulnerability
Description:Directory traversal vulnerability in Sun Kodak Color Management System (KCMS) library service daemon (kcms_server) allows remote attackers to read arbitrary files via the KCS_OPEN_PROFILE procedure.
Family:unixClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2003-0027
Platform(s):Sun Solaris 7
Sun Solaris 8
Sun Solaris 9
Product(s):kcms_server
Definition Synopsis
  • Software section
  • Solaris 7,8,or 9 installed
  • Solaris 8 Installed
  • OR Solaris 7 Installed
  • OR Solaris 9 Installed
  • AND Kodak Color Managment Server (KCMS) Runtime Environment (SUNWkcsrt/SUNWkcsrx) installed
  • AND NOT Patch 114636-01 or later installed
  • AND NOT Patch 107337-03 or later installed
  • AND NOT Patch 111400-02 or later installed
  • AND Configuration section
  • inetd.conf contains kcms_server
  • AND inetd running
    • BACK