Lucene search

MitreCVE-2001-0115

HistoryMay 07, 2001 - 4:00 a.m.

CVE-2001-0115

2001-05-0704:00:00

mitre

web.nvd.nist.gov

cve-2001-0115

solaris 7

overlow

arp

long parameter

security

system vulnerability

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

AI Score

7.8

Confidence

High

EPSS

Percentile

0.4%

JSON

Buffer overflow in arp command in Solaris 7 and earlier allows local users to execute arbitrary commands via a long -f parameter.

Affected configurations

Nvd

Node

sunsolarisMatch2.4x86

sunsolarisMatch2.5x86

sunsolarisMatch2.5.1x86

sunsolarisMatch2.6

sunsolarisMatch7.0x86

sunsunosMatch-

sunsunosMatch5.4

sunsunosMatch5.5

sunsunosMatch5.5.1

sunsunosMatch5.7

VendorProductVersionCPE
sunsolaris2.4cpe:2.3:o:sun:solaris:2.4:*:x86:*:*:*:*:*
sunsolaris2.5cpe:2.3:o:sun:solaris:2.5:*:x86:*:*:*:*:*
sunsolaris2.5.1cpe:2.3:o:sun:solaris:2.5.1:*:x86:*:*:*:*:*
sunsolaris2.6cpe:2.3:o:sun:solaris:2.6:*:*:*:*:*:*:*
sunsolaris7.0cpe:2.3:o:sun:solaris:7.0:*:x86:*:*:*:*:*
sunsunos-cpe:2.3:o:sun:sunos:-:*:*:*:*:*:*:*
sunsunos5.4cpe:2.3:o:sun:sunos:5.4:*:*:*:*:*:*:*
sunsunos5.5cpe:2.3:o:sun:sunos:5.5:*:*:*:*:*:*:*
sunsunos5.5.1cpe:2.3:o:sun:sunos:5.5.1:*:*:*:*:*:*:*
sunsunos5.7cpe:2.3:o:sun:sunos:5.7:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
sun	solaris	2.4	cpe:2.3:o:sun:solaris:2.4::x86:::::
sun	solaris	2.5	cpe:2.3:o:sun:solaris:2.5::x86:::::
sun	solaris	2.5.1	cpe:2.3:o:sun:solaris:2.5.1::x86:::::
sun	solaris	2.6	cpe:2.3:o:sun:solaris:2.6:::::::*
sun	solaris	7.0	cpe:2.3:o:sun:solaris:7.0::x86:::::
sun	sunos	-	cpe:2.3:o:sun:sunos:-:::::::*
sun	sunos	5.4	cpe:2.3:o:sun:sunos:5.4:::::::*
sun	sunos	5.5	cpe:2.3:o:sun:sunos:5.5:::::::*
sun	sunos	5.5.1	cpe:2.3:o:sun:sunos:5.5.1:::::::*
sun	sunos	5.7	cpe:2.3:o:sun:sunos:5.7:::::::*

References

marc.info/?l=bugtraq&m=97934312727101&w=2

marc.info/?l=bugtraq&m=97957435729702&w=2

sunsolve.sun.com/pub-cgi/retrieve.pl?doctype=coll&doc=secbull/200&type=0&nav=sec.sba

www.securityfocus.com/bid/2193

exchange.xforce.ibmcloud.com/vulnerabilities/5928

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

AI Score

7.8

Confidence

High

EPSS

Percentile

0.4%

JSON

Related for CVE-2001-0115