Directory traversal vulnerability in priocntl system call in Solaris does allows local users to execute arbitrary code via .. sequences in the pc_clname field of a pcinfo_t structure, which cause priocntl to load a malicious kernel module.
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Solaris | Sun | 2.6 (including) | 2.6 (including) |
| Solaris | Sun | 7.0 (including) | 7.0 (including) |
| Solaris | Sun | 8.0 (including) | 8.0 (including) |
| Solaris | Sun | 9.0 (including) | 9.0 (including) |
| Sunos | Sun | 5.5.1 (including) | 5.5.1 (including) |
| Sunos | Sun | 5.7 (including) | 5.7 (including) |
| Sunos | Sun | 5.8 (including) | 5.8 (including) |