Buffer overflow in the kcsSUNWIOsolf.so library in Solaris 7 and 8 allows local attackers to execute arbitrary commands via the KCMS_PROFILES environment variable, e.g. as demonstrated using the kcms_configure program.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Sunos | Sun | 5.7 | 5.7 |
Sunos | Sun | 5.8 | 5.8 |