CVE-2002-1296

Published: Dec 23, 2002Modified: Apr 16, 2026

7.2

Vector

AV:L/AC:L/Au:N/C:C/I:C/A:C

Exploitability: 3.9 / Impact: 10.0

Source: NVD

Description

Directory traversal vulnerability in priocntl system call in Solaris does allows local users to execute arbitrary code via ".." sequences in the pc_clname field of a pcinfo_t structure, which cause priocntl to load a malicious kernel module.

Affected (7)

Products: Sun: Solaris, Sunos

2 products

Configuration A

7 vulnerable

Vulnerable Software	Affected Versions
Sun Solaris	Version 2.6
Sun Solaris	Version 7.0
Sun Solaris	Version 8.0
Sun Solaris	Version 9.0
Sun Sunos	Version 5.5.1
Sun Sunos	Version 5.7
Sun Sunos	Version 5.8

References (12)

http://marc.info/?l=bugtraq&m=103842619803173&w=2

Source: cve@mitre.org

http://sunsolve.Sun.COM/pub-cgi/retrieve.pl?doc=fsalert/49131

Source: cve@mitre.org

PatchVendor Advisory

http://www.iss.net/security_center/static/10717.php

Source: cve@mitre.org

Vendor Advisory

http://www.kb.cert.org/vuls/id/683673

Source: cve@mitre.org

PatchThird Party AdvisoryUS Government Resource

http://www.securityfocus.com/bid/6262

Source: cve@mitre.org

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A3637

Source: cve@mitre.org

http://marc.info/?l=bugtraq&m=103842619803173&w=2

Source: af854a3a-2127-422b-91ae-364da2661108

http://sunsolve.Sun.COM/pub-cgi/retrieve.pl?doc=fsalert/49131

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

http://www.iss.net/security_center/static/10717.php

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://www.kb.cert.org/vuls/id/683673

Source: af854a3a-2127-422b-91ae-364da2661108

PatchThird Party AdvisoryUS Government Resource

http://www.securityfocus.com/bid/6262

Source: af854a3a-2127-422b-91ae-364da2661108

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A3637

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.