Lucene search

[email protected]CVE-2001-0426

HistoryJul 02, 2001 - 4:00 a.m.

CVE-2001-0426

2001-07-0204:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2001-0426

buffer overflow

solaris

dtsession

privilege escalation

lang variable

local exploit.

7.7 High

AI Score

Confidence

Low

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

0.4%

JSON

Buffer overflow in dtsession on Solaris, and possibly other operating systems, allows local users to gain privileges via a long LANG environmental variable.

CPENameOperatorVersion
sun:sunossun sunoseq5.7
sun:sunossun sunoseq5.8
sun:solarissun solariseq7.0
sun:solarissun solariseq2.6
sun:solarissun solariseq8.0
sun:sunossun sunoseq-

CPE	Name	Operator	Version
sun:sunos	sun sunos	eq	5.7
sun:sunos	sun sunos	eq	5.8
sun:solaris	sun solaris	eq	7.0
sun:solaris	sun solaris	eq	2.6
sun:solaris	sun solaris	eq	8.0
sun:sunos	sun sunos	eq	-

References

archives.neohapsis.com/archives/bugtraq/2001-04/0203.html

7.7 High

AI Score

Confidence

Low

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

0.4%

JSON

Related for CVE-2001-0426

cvelist1