Solaris 7 and 8 - Local Privilege Escalation via kcms_configure Command Line Argument Buffer Overflow
kcms_configure as included with Solaris 7 and 8 allows a local attacker to gain additional privileges via a buffer overflow in a command line argument.