EUVD-1999-0799

Malware in sbrugna...

Solaris 7/8 kcms_configure Command-Line Buffer Overflow Vulnerability (2)

No description provided by source. source: http://www.securityfocus.com/bid/2558/info The Kodak Color Management System, or KCMS, is a package that ships with workstation installations of Solaris 7 and 8. kcmsconfigure, a part of KCMS, is vulnerable to a buffer overflow if it is passed an overly...

Solaris Update for kcms_server and kcms_configure 114637-04

Check for the Version of kcmsserver and kcmsconfigure OpenVAS Vulnerability Test Solaris Update for kcmsserver and kcmsconfigure 114637-04 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can...

Solaris Update for kcms_server and kcms_configure 111400-04

Check for the Version of kcmsserver and kcmsconfigure OpenVAS Vulnerability Test Solaris Update for kcmsserver and kcmsconfigure 111400-04 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can...

Solaris Update for kcms_server and kcms_configure 114637-04

Check for the Version of kcmsserver and kcmsconfigure OpenVAS Vulnerability Test Solaris Update for kcmsserver and kcmsconfigure 114637-04 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can...

Solaris Update for kcms_server and kcms_configure 111401-04

Check for the Version of kcmsserver and kcmsconfigure OpenVAS Vulnerability Test Solaris Update for kcmsserver and kcmsconfigure 111401-04 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can...

Solaris Update for kcms_server and kcms_configure 114636-04

Check for the Version of kcmsserver and kcmsconfigure OpenVAS Vulnerability Test Solaris Update for kcmsserver and kcmsconfigure 114636-04 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can...

Solaris Update for kcms_server and kcms_configure 111401-04

Check for the Version of kcmsserver and kcmsconfigure OpenVAS Vulnerability Test Solaris Update for kcmsserver and kcmsconfigure 111401-04 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can...

Solaris Update for kcms_server and kcms_configure 111400-04

Check for the Version of kcmsserver and kcmsconfigure OpenVAS Vulnerability Test Solaris Update for kcmsserver and kcmsconfigure 111400-04 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can...

Solaris Update for kcms_server and kcms_configure 114636-04

Check for the Version of kcmsserver and kcmsconfigure OpenVAS Vulnerability Test Solaris Update for kcmsserver and kcmsconfigure 114636-04 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can...

CVE-2004-0481

The CVE-2004-0481 issue affects the Solaris KCMS package, specifically the kcms_configure script, whose logging to KCS_ClogFile can be manipulated via a symlink to corrupt arbitrary files. Affected versions include Solaris 8/9 (and possibly others as per reports). The underlying cause is untruste...

[Full-Disclosure] iDEFENSE Security Advisory 02.23.05: Sun Solaris kcms_configure Arbitrary File Corruption Vulnerability

Sun Solaris kcmsconfigure Arbitrary File Corruption Vulnerability iDEFENSE Security Advisory 02.23.05 www.idefense.com/application/poi/display?id=206&type=vulnerabilities February 23, 2005 I. BACKGROUND The kcmsconfigure utility is part of the Kodak Color Management System KCMS package that is...

CVE-2004-0481

The logging feature in kcmsconfigure in the KCMS package on Solaris 8 and 9, and possibly other versions, allows local users to corrupt arbitrary files via a symlink attack on the KCSClogFile file...

CVE-2001-0594

CVE-2001-0594 affects Solaris 7/8 where kcms_configure is vulnerable to a local privilege escalation caused by a buffer overflow in a command line argument. Root cause: buffer overflow in kcms_configure. Impact: partial confidentiality, integrity, and availability (per NVD). Remediation: apply So...

CVE-2001-0595

Buffer overflow in the kcsSUNWIOsolf.so library in Solaris 7 and 8 allows local attackers to execute arbitrary commands via the KCMSPROFILES environment variable, e.g. as demonstrated using the kcmsconfigure program...

CVE-2001-0595

The CVE-2001-0595 issue affects Sun’s KCMS component on Solaris 7/8, where a buffer overflow in the kcsSUNWIOsolf.so library allows a local user to execute arbitrary commands via the KCMS_PROFILES environment variable (demonstrated by kcms_configure). OpenVAS entries describe the KCMS Profile Ser...

CVE-2001-0594

kcmsconfigure as included with Solaris 7 and 8 allows a local attacker to gain additional privileges via a buffer overflow in a command line argument...

Solaris kcms_configure vulnerability

Solaris kcmsconfigure vulnerability Discovered and exploited by: Riley Hassell [email protected] Release Date: April 9, 2001 Systems Affected: Solaris 7/8 x86 and sparc Versions prior are also most likely affected Description: It was another long day at eEye where the beer was once again cold but eE...

CVE-1999-0818

CVE-1999-0818 notes a buffer overflow in Solaris kcms_configure triggered by a long NETPATH environment variable. The vulnerability is local (attack vector Local) with low attack complexity and no authentication, and it has complete impact on confidentiality, integrity, and availability (C:C/I:C/...

Solaris 2.52.67.08 - kcms_configure KCMS_PROFILES Buffer Overflow (1)

Solaris 2.52.67.08 - kcmsconfigure KCMSPROFILES Buffer Overflow 1 / source: https://www.securityfocus.com/bid/2605/info The Kodak Color Management System configuration tool 'kcmsconfigure' is vulnerable to a buffer overflow that could yield root privileges to an attacker. The bug exists in the...