Oval Definition:oval:org.mitre.oval:def:34
Revision Date:2007-02-20Version:15
Title:Solaris 7 whodo Buffer Overflow Vulnerability
Description:Buffer overflow in whodo in Solaris SunOS 5.5.1 through 5.8 allows local users to execute arbitrary code via a long (1) SOR or (2) CFIME environment variable.
Family:unixClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2001-1076
Platform(s):Sun Solaris 7
Product(s):whodo
Definition Synopsis
  • Software section
  • Solaris 7 Installed
  • AND File whodo exists
  • AND NOT Patch 111600-01 or later installed
  • AND Configuration section
  • File whodo SUID and executable
  • File whodo SUID
  • AND File whodo oexec set
    • BACK