Oval Definition:oval:org.mitre.oval:def:3637
Revision Date:2005-03-09Version:16
Title:priocntl Directory Traversal Vulnerability
Description:Directory traversal vulnerability in priocntl system call in Solaris does allows local users to execute arbitrary code via ".." sequences in the pc_clname field of a pcinfo_t structure, which cause priocntl to load a malicious kernel module.
Family:unixClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2002-1296
Platform(s):Sun Solaris 7
Sun Solaris 8
Sun Solaris 9
Product(s):priocntl()
Definition Synopsis
  • Solaris 7,8,or 9 installed
  • Solaris 8 Installed
  • OR Solaris 7 Installed
  • OR Solaris 9 Installed
  • AND NOT Patch 106541-24 or later installed
  • AND NOT Patch 108528-18 or later installed
  • AND NOT Patch 112233-04 or later installed
    • BACK