New Search

Security Vulnerability in Solaris Named Pipes (pipe(2)) May Allow Unauthorized Data Access

oval:org.mitre.oval:def:2170

Integer signedness error in FIFO filesystems (named pipes) on Sun Solaris 8 through 10 allows local users to read the contents of unspecified memory locations via a negative maximum length value to the I_PEEK ioctl.

Family:
unix
Status:
ACCEPTED
Platform(s):
  • Sun Solaris 9
  • Sun Solaris 10
  • Sun Solaris 8
Class:
vulnerability
Reference(s):
  • CVE-2007-5225
Product(s):