| Revision Date: | 2007-02-20 | Version: | 15 |
| Title: | Solaris 7 whodo Buffer Overflow Vulnerability |
| Description: | Buffer overflow in whodo in Solaris SunOS 5.5.1 through 5.8 allows local users to execute arbitrary code via a long (1) SOR or (2) CFIME environment variable. |
| Family: | unix | Class: | vulnerability |
| Status: | ACCEPTED | Reference(s): | CVE-2001-1076
|
| Platform(s): | Sun Solaris 7
| Product(s): | whodo
|
| Definition Synopsis |
| Software section Solaris 7 Installed
AND File whodo exists
AND NOT Patch 111600-01 or later installed
AND Configuration section
File whodo SUID and executable
File whodo SUID
AND File whodo oexec set
|