Solaris dtprintinfo -p Option Local Overflow

1999-05-10T00:00:00
ID OSVDB:6552
Type osvdb
Reporter UNYUN(unewn4th@usa.net)
Modified 1999-05-10T00:00:00

Description

Vulnerability Description

A local overflow exists in the dtprintinfo utility. dtprintinfo fails to validate the -p argument resulting in a stack buffer overflow. With a specially crafted request, an attacker can obtain root privileges resulting in a loss of confidentiality.

Solution Description

Currently, there are no known workarounds or upgrades to correct this issue. However, Sun Microsystems has released a patch to address this vulnerability.

Short Description

A local overflow exists in the dtprintinfo utility. dtprintinfo fails to validate the -p argument resulting in a stack buffer overflow. With a specially crafted request, an attacker can obtain root privileges resulting in a loss of confidentiality.

References:

Mail List Post: http://archives.neohapsis.com/archives/bugtraq/1999_2/0429.html Mail List Post: http://archives.neohapsis.com/archives/bugtraq/1999_2/0421.html ISS X-Force ID: 2188 CVE-1999-0806 Bugtraq ID: 249