CyberSec.Space Logo
CVEブラウザに戻る

CVE-2002-0033

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.1800%
EPSS Percentile39.23th
Published2002年5月29日
Last Modified2026年4月16日

Vulnerability Description

Heap-based buffer overflow in cfsd_calloc function of Solaris cachefsd allows remote attackers to execute arbitrary code via a request with a long directory and cache name.

Affected Platforms (CPE)

💻
Sun

Solaris

= 2.5.1
💻
Sun

Solaris

= 2.5.1
💻
Sun

Solaris

= 2.6
💻
Sun

Solaris

= 7.0
💻
Sun

Solaris

= 7.0
💻
Sun

Solaris

= 8.0
💻
Sun

Solaris

= 8.0
💻
Sun

Sunos

All versions

References & Advisories

🔗 http://archives.neohapsis.com/archives/bugtraq/2002-05/0026.html
🔗 http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert%2F44309
🔗 http://www.cert.org/advisories/CA-2002-11.html
🔗 http://www.iss.net/security_center/static/8999.php
🔗 http://www.kb.cert.org/vuls/id/635811
🔗 http://www.securityfocus.com/bid/4674
🔗 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A124
🔗 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A31

関連する脆弱性情報

CVE-1999-056810.0

rpc.admind in Solaris is not running in a secure mode.

CVE-1999-097310.0

Buffer overflow in Solaris snoop program allows remote attackers to gain root privileges via a long domain name when snoop is runn...

CVE-2020-1487110.0

Vulnerability in the Oracle Solaris product of Oracle Systems (component: Pluggable authentication module). Supported versions tha...

CVE-1999-097410.0

Buffer overflow in Solaris snoop allows remote attackers to gain root privileges via GETQUOTA requests to the rpc.rquotad service.