New Search

Security Vulnerabilities in Solaris ld.so.1(1) may Lead to Execution of Arbitrary Code with Elevated Privileges

oval:org.mitre.oval:def:2121

Directory traversal vulnerability in ld.so.1 in Sun Solaris 8 9 and 10 allows local users to execute arbitrary code via a .. (dot dot) sequence in the LANG environment variable that points to a locale file containing attacker-controlled format string specifiers.

Family:
unix
Status:
ACCEPTED
Platform(s):
  • Sun Solaris 9
  • Sun Solaris 8
  • Sun Solaris 10
Class:
vulnerability
Reference(s):
  • CVE-2006-6494
Product(s):