21 matches found
EUVD-2004-0480
Malware in sbrugna...
CVE-2004-0481
The logging feature in kcmsconfigure in the KCMS package on Solaris 8 and 9, and possibly other versions, allows local users to corrupt arbitrary files via a symlink attack on the KCSClogFile file...
Solaris 7/8 kcms_configure Command-Line Buffer Overflow Vulnerability (1)
No description provided by source. source: http://www.securityfocus.com/bid/2558/info The Kodak Color Management System, or KCMS, is a package that ships with workstation installations of Solaris 7 and 8. kcmsconfigure, a part of KCMS, is vulnerable to a buffer overflow if it is passed an overly...
Solaris 7/8 kcms_configure Command-Line Buffer Overflow Vulnerability (2)
No description provided by source. source: http://www.securityfocus.com/bid/2558/info The Kodak Color Management System, or KCMS, is a package that ships with workstation installations of Solaris 7 and 8. kcmsconfigure, a part of KCMS, is vulnerable to a buffer overflow if it is passed an overly...
Solaris KCMS + TTDB Arbitrary File Read
This module targets a directory traversal vulnerability in the kcmsserver component from the Kodak Color Management System. By utilizing the ToolTalk Database Server's TTISBUILD procedure, an attacker can bypass existing directory traversal validation and read arbitrary files. Vulnerable systems...
Solaris Update for KCMS 114636-05
Check for the Version of KCMS OpenVAS Vulnerability Test Solaris Update for KCMS 114636-05 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms of the G...
Solaris Update for KCMS 114636-05
Check for the Version of KCMS OpenVAS Vulnerability Test Solaris Update for KCMS 114636-05 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms of the G...
Solaris Update for KCMS security fixes 114637-05
Check for the Version of KCMS security fixes OpenVAS Vulnerability Test Solaris Update for KCMS security fixes 114637-05 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modi...
Kcms Profile Server
The Kodak Color Management System service is running. The KCMS service on Solaris 2.5 could allow a local user to write to arbitrary files and gain root access. Patches: 107337-02 SunOS 5.7 has been released and the following should be out soon: 111400-01 SunOS 5.8, 111401-01 SunOS 5.8x86...
CVE-2003-0027
The CVE-2003-0027 vulnerability affects Sun KCMS kcms_server on Solaris. The KCS_OPEN_PROFILE call does not properly validate the fileName, allowing a remote attacker to perform directory traversal and read arbitrary files. The ToolTalk database server (rpc.ttdbserverd) TT_ISBUILD() procedure can...
Solaris 7 (x86) : 107339-04
SunOS 5.7x86: kcmsserver and kcmsconfigure security fixes. Date this patch was last updated by Sun : Feb/17/05 %NASLMINLEVEL 999999 @DEPRECATED@ This script has been deprecated as the associated patch is not currently a recommended security fix. Disabled on 2011/10/24. C Tenable Network Security,...
Solaris 9 (sparc) : 114636-05
SunOS 5.9: KCMS patch. Date this patch was last updated by Sun : Aug/21/09 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc'; include'compat.inc'; if description scriptid1355...
Solaris 9 (x86) : 114637-05
SunOS 5.9x86: KCMS security fixes. Date this patch was last updated by Sun : Aug/21/09 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc'; include'compat.inc'; if description...
Entercept Ricochet Advisory: Sun Solaris KCMS Library Service Daemon Arbitrary File Retrieval Vulnerability
ENTERCEPT RICOCHET ADVISORY Date: Wednesday, January 22, 2003 Issue: KCMS Library Service Daemon Arbitrary File Retrieval Vulnerability http://www.entercept.com/news/uspr/01-22-03.asp Vulnerability Description: Kodak Color Management System KCMS is an API that provides color management functions...
Sun KCMS library service daemon does not adequately validate location of KCMS profiles
Overview The Sun KCMS library service daemon, kcmsserver, does not adequately validate the location of KCMS profile files. This could allow a remote attacker to read arbitrary files on a vulnerable system. Description Sun Solaris contains support for the Kodak Color Management System KCMS, an...
Solaris 7/8 - 'kcms_configure' Command-Line Buffer Overflow (1)
// source: https://www.securityfocus.com/bid/2558/info The Kodak Color Management System, or KCMS, is a package that ships with workstation installations of Solaris 7 and 8. kcmsconfigure, a part of KCMS, is vulnerable to a buffer overflow if it is passed an overly long string on the command-line...
Solaris 7/8 - 'kcms_configure' Command-Line Buffer Overflow (2)
// source: https://www.securityfocus.com/bid/2558/info The Kodak Color Management System, or KCMS, is a package that ships with workstation installations of Solaris 7 and 8. kcmsconfigure, a part of KCMS, is vulnerable to a buffer overflow if it is passed an overly long string on the command-line...
Solaris 78 - kcms_configure Command-Line Buffer Overflow (1)
Solaris 78 - kcmsconfigure Command-Line Buffer Overflow 1 // source: https://www.securityfocus.com/bid/2558/info The Kodak Color Management System, or KCMS, is a package that ships with workstation installations of Solaris 7 and 8. kcmsconfigure, a part of KCMS, is vulnerable to a buffer overflow...
Solaris 78 - kcms_configure Command-Line Buffer Overflow (2)
Solaris 78 - kcmsconfigure Command-Line Buffer Overflow 2 // source: https://www.securityfocus.com/bid/2558/info The Kodak Color Management System, or KCMS, is a package that ships with workstation installations of Solaris 7 and 8. kcmsconfigure, a part of KCMS, is vulnerable to a buffer overflow...
CVE-1999-0136
CVE-1999-0136 affects the Kodak Color Management System (KCMS) on Solaris. A local user can write to arbitrary files and gain root access. The matter is documented across several sources, with OpenVAS indicating a Solaris update (111400-04) for kcms_server and kcms_configure as a remediation path...