Oval Definition:oval:org.mitre.oval:def:31
Revision Date:2010-09-20Version:19
Title:Solaris 8/9 cachefsd Heap Overflow Vulnerability
Description:Heap-based buffer overflow in cfsd_calloc function of Solaris cachefsd allows remote attackers to execute arbitrary code via a request with a long directory and cache name.
Family:unixClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2002-0033
Platform(s):Sun Solaris 8
Product(s):cachefsd
Definition Synopsis
  • Software section
  • File cachefsd exists
  • AND NOT Patch 110896-02 or later installed
  • AND Solaris 8 or 9 installed
  • Solaris 8 Installed
  • OR Solaris 9 Installed
  • AND NOT Patch 114008-01 or later installed
  • AND Configuration section
  • inetd.conf contains cachefsd
  • AND inetd running
  • AND File cachefsd executable
  • File cachefsd executable
  • OR File cachefsd executable
  • OR File cachefsd executable
    • BACK