Vulnerability Name:
CVE-2000-0471 (CCN-4711)
Assigned:
2000-06-14
Published:
2000-06-14
Updated:
2018-10-30
Summary:
Buffer overflow in ufsrestore in Solaris 8 and earlier allows local users to gain root privileges via a long pathname.
CVSS v3 Severity:
9.3 Critical
(CCN CVSS v3.1 Vector:
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
)
Exploitability Metrics:
Attack Vector (AV):
Local
Attack Complexity (AC):
Low
Privileges Required (PR):
None
User Interaction (UI):
None
Scope:
Scope (S):
Changed
Impact Metrics:
Confidentiality (C):
High
Integrity (I):
High
Availibility (A):
High
CVSS v2 Severity:
7.2 High
(CVSS v2 Vector:
AV:L/AC:L/Au:N/C:C/I:C/A:C
)
Exploitability Metrics:
Access Vector (AV):
Local
Access Complexity (AC):
Low
Authentication (Au):
None
Impact Metrics:
Confidentiality (C):
Complete
Integrity (I):
Complete
Availibility (A):
Complete
7.2 High
(CCN CVSS v2 Vector:
AV:L/AC:L/Au:N/C:C/I:C/A:C
)
Exploitability Metrics:
Access Vector (AV):
Local
Access Complexity (AC):
Low
Athentication (Au):
None
Impact Metrics:
Confidentiality (C):
Complete
Integrity (I):
Complete
Availibility (A):
Complete
Vulnerability Type:
CWE-Other
Vulnerability Consequences:
Gain Access
References:
Source: BUGTRAQ
Type: UNKNOWN
20000614 Vulnerability in Solaris ufsrestore
Source: CCN
Type: BugTraq Mailing List, Wed Jun 14 2000 - 06:59:05 CDT
Vulnerability in Solaris ufsrestore
Source: CCN
Type: BugTraq Mailing List, Tue Oct 23 2001 - 17:25:08 CDT
Sun Security Bulletin #00210 (fwd)
Source: MITRE
Type: CNA
CVE-2000-0471
Source: SUN
Type: UNKNOWN
00210
Source: CCN
Type: Sun Microsystems, Inc. Security Bulletin #00210
ufsrestore
Source: CCN
Type: CIAC Information Bulletin I-065
SunOS ufsrestore Buffer Overflow Vulnerability
Source: CCN
Type: US-CERT VU#36866
Solaris ufsrestore buffer overflow in command pathname parameters for interactive session
Source: CERT-VN
Type: US Government Resource
VU#36866
Source: OSVDB
Type: UNKNOWN
1398
Source: CCN
Type: OSVDB ID: 1398
Solaris ufsrestore pathname Overflow
Source: BID
Type: Exploit, Patch, Vendor Advisory
1348
Source: CCN
Type: BID-1348
Solaris ufsrestore Buffer Overflow Vulnerability
Source: XF
Type: UNKNOWN
sol-ufsrestore-bo(4711)
Source: XF
Type: UNKNOWN
sol-ufsrestore-bo(4711)
Vulnerable Configuration:
Configuration 1
:
cpe:/o:sun:solaris:*:*:x86:*:*:*:*:*
OR
cpe:/o:sun:solaris:1.1.3:u1:*:*:*:*:*:*
OR
cpe:/o:sun:solaris:1.1.4:*:jl:*:*:*:*:*
OR
cpe:/o:sun:solaris:2.4:*:x86:*:*:*:*:*
OR
cpe:/o:sun:solaris:2.5:*:x86:*:*:*:*:*
OR
cpe:/o:sun:solaris:2.5.1:*:ppc:*:*:*:*:*
OR
cpe:/o:sun:solaris:2.5.1:*:x86:*:*:*:*:*
OR
cpe:/o:sun:sunos:5.6:*:*:*:*:*:*:*
OR
cpe:/o:sun:solaris:5.4:*:x86:*:*:*:*:*
OR
cpe:/o:sun:solaris:5.5:*:x86:*:*:*:*:*
OR
cpe:/o:sun:solaris:5.5.1:*:x86:*:*:*:*:*
OR
cpe:/o:sun:solaris:5.6:*:x86:*:*:*:*:*
OR
cpe:/o:sun:solaris:7.0:*:x86:*:*:*:*:*
OR
cpe:/o:sun:sunos:-:*:*:*:*:*:*:*
OR
cpe:/o:sun:sunos:4.1.3:*:*:*:*:*:*:*
OR
cpe:/o:sun:sunos:4.1.4:*:*:*:*:*:*:*
OR
cpe:/o:sun:sunos:5.0:*:*:*:*:*:*:*
OR
cpe:/o:sun:sunos:5.1:*:*:*:*:*:*:*
OR
cpe:/o:sun:sunos:5.2:*:*:*:*:*:*:*
OR
cpe:/o:sun:sunos:5.3:*:*:*:*:*:*:*
OR
cpe:/o:sun:sunos:5.4:*:*:*:*:*:*:*
OR
cpe:/o:sun:sunos:5.5:*:*:*:*:*:*:*
OR
cpe:/o:sun:sunos:5.5.1:*:*:*:*:*:*:*
OR
cpe:/o:sun:sunos:5.6:*:*:*:*:*:*:*
OR
cpe:/o:sun:sunos:5.7:*:*:*:*:*:*:*
OR
cpe:/o:sun:sunos:5.8:*:*:*:*:*:*:*
Configuration CCN 1
:
cpe:/o:sun:sunos:5.3:*:*:*:*:*:*:*
OR
cpe:/o:sun:sunos:5.5.1:*:*:*:*:*:*:*
OR
cpe:/o:sun:sunos:5.6:*:*:*:*:*:*:*
OR
cpe:/o:sun:solaris:2.5:*:x86:*:*:*:*:*
OR
cpe:/o:sun:solaris:2.5.1:*:x86:*:*:*:*:*
OR
cpe:/o:sun:solaris:7.0:*:x86:*:*:*:*:*
OR
cpe:/o:sun:solaris:2.4:*:x86:*:*:*:*:*
OR
cpe:/o:sun:sunos:5.2:*:*:*:*:*:*:*
OR
cpe:/o:sun:solaris:*:*:x86:*:*:*:*:*
OR
cpe:/o:sun:sunos:5.6:*:*:*:*:*:*:*
OR
cpe:/o:sun:sunos:4.1.3:*:*:*:*:*:*:*
OR
cpe:/o:sun:sunos:-:*:*:*:*:*:*:*
OR
cpe:/o:sun:sunos:4.1.4:*:*:*:*:*:*:*
OR
cpe:/o:sun:sunos:5.7:*:*:*:*:*:*:*
OR
cpe:/o:sun:sunos:5.4:*:*:*:*:*:*:*
OR
cpe:/o:sun:solaris:1.1.3:u1:*:*:*:*:*:*
OR
cpe:/o:sun:sunos:-:*:*:*:*:*:*:*
OR
cpe:/o:sun:sunos:5.0:*:*:*:*:*:*:*
OR
cpe:/o:sun:sunos:5.1:*:*:*:*:*:*:*
OR
cpe:/o:sun:sunos:5.5:*:*:*:*:*:*:*
OR
cpe:/o:sun:sunos:-:*:*:*:*:*:*:*
OR
cpe:/o:sun:sunos:-:*:*:*:*:*:*:*
OR
cpe:/o:sun:sunos:5.3:*:*:*:*:*:*:*
OR
cpe:/o:sun:sunos:5.4:*:*:*:*:*:*:*
OR
cpe:/o:sun:sunos:5.5:*:*:*:*:*:*:*
OR
cpe:/o:sun:sunos:5.5.1:*:*:*:*:*:*:*
OR
cpe:/o:sun:solaris:8.0:beta:*:*:*:*:*:*
OR
cpe:/o:sun:solaris:5.6:*:x86:*:*:*:*:*
OR
cpe:/o:sun:solaris:5.5.1:*:x86:*:*:*:*:*
OR
cpe:/o:sun:solaris:5.5:*:x86:*:*:*:*:*
OR
cpe:/o:sun:solaris:5.4:*:x86:*:*:*:*:*
OR
cpe:/o:sun:solaris:2.5.1:*:ppc:*:*:*:*:*
OR
cpe:/o:sun:solaris:1.1.4:*:jl:*:*:*:*:*
OR
cpe:/o:sun:solaris:1.1.3:u1:*:*:*:*:*:*
Denotes that component is vulnerable
BACK
sun
solaris *
sun
solaris 1.1.3 u1
sun
solaris 1.1.4
sun
solaris 2.4
sun
solaris 2.5
sun
solaris 2.5.1
sun
solaris 2.5.1
sun
solaris 2.6
sun
solaris 5.4
sun
solaris 5.5
sun
solaris 5.5.1
sun
solaris 5.6
sun
solaris 7.0
sun
sunos -
sun
sunos 4.1.3
sun
sunos 4.1.4
sun
sunos 5.0
sun
sunos 5.1
sun
sunos 5.2
sun
sunos 5.3
sun
sunos 5.4
sun
sunos 5.5
sun
sunos 5.5.1
sun
sunos 5.6
sun
sunos 5.7
sun
sunos 5.8
sun
solaris 2.3
sun
solaris 2.5.1
sun
solaris 2.6
sun
solaris 2.5
sun
solaris 2.5.1
sun
solaris 7.0
sun
solaris 2.4
sun
solaris 2.2
sun
solaris *
sun
sunos 5.6
sun
solaris 1.1
sun
solaris 1.2
sun
solaris 1.1.2
sun
solaris 7.0
sun
solaris 2.4
sun
solaris 1.1.3 u1
sun
solaris 1.1.4
sun
solaris 2.0
sun
solaris 2.1
sun
solaris 2.5
sun
solaris 2.6 hw3
sun
solaris 2.6 hw5
sun
solaris 5.3
sun
solaris 5.4
sun
solaris 5.5
sun
solaris 5.5.1
sun
solaris 8.0 beta
sun
solaris 5.6
sun
solaris 5.5.1
sun
solaris 5.5
sun
solaris 5.4
sun
solaris 2.5.1
sun
solaris 1.1.4
sun
solaris 1.1.3 u1
Denotes that component is vulnerable