CyberSec.Space Logo
Back to CVE Browser

CVE-2002-0033

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.1800%
EPSS Percentile39.23th
PublishedMay 29, 2002
Last ModifiedApr 16, 2026

Vulnerability Description

Heap-based buffer overflow in cfsd_calloc function of Solaris cachefsd allows remote attackers to execute arbitrary code via a request with a long directory and cache name.

Affected Platforms (CPE)

πŸ’»
Sun

Solaris

= 2.5.1
πŸ’»
Sun

Solaris

= 2.5.1
πŸ’»
Sun

Solaris

= 2.6
πŸ’»
Sun

Solaris

= 7.0
πŸ’»
Sun

Solaris

= 7.0
πŸ’»
Sun

Solaris

= 8.0
πŸ’»
Sun

Solaris

= 8.0
πŸ’»
Sun

Sunos

All versions

References & Advisories

πŸ”— http://archives.neohapsis.com/archives/bugtraq/2002-05/0026.html
πŸ”— http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert%2F44309
πŸ”— http://www.cert.org/advisories/CA-2002-11.html
πŸ”— http://www.iss.net/security_center/static/8999.php
πŸ”— http://www.kb.cert.org/vuls/id/635811
πŸ”— http://www.securityfocus.com/bid/4674
πŸ”— https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A124
πŸ”— https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A31

Related Vulnerabilities

CVE-1999-056810.0

rpc.admind in Solaris is not running in a secure mode.

CVE-1999-097310.0

Buffer overflow in Solaris snoop program allows remote attackers to gain root privileges via a long domain name when snoop is runn...

CVE-2020-1487110.0

Vulnerability in the Oracle Solaris product of Oracle Systems (component: Pluggable authentication module). Supported versions tha...

CVE-1999-097410.0

Buffer overflow in Solaris snoop allows remote attackers to gain root privileges via GETQUOTA requests to the rpc.rquotad service.