Solaris <= 2.5.1 kcms Buffer Overflow Vulnerability (2)

No description provided by source. source: http://www.securityfocus.com/bid/452/info There is an unchecked sprintf call in the versions of /usr/openwin/bin/kcmsconfigure shipped with solaris 2.5, 2.5.1 and 2.6. Unfortunately, kcmsconfigure is installed setuid root, making it possible for an...