CVE-1999-0818
Solaris - Buffer Overflow via Long NETPATH Environmental Variable
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-1999-0818. PoCs published by UNYUN.
AI-analyzed exploit summary This exploit targets a local buffer overflow in the setuid root binary kcms_configure on Solaris 7 Intel Edition by overflowing the NETPATH environment variable. It executes arbitrary shellcode to spawn a root shell.
Description
Buffer overflow in Solaris kcms_configure via a long NETPATH environmental variable.
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by UNYUN · clocalsolaris
https://www.exploit-db.com/exploits/19647
This exploit targets a local buffer overflow in the setuid root binary kcms_configure on Solaris 7 Intel Edition by overflowing the NETPATH environment variable. It executes arbitrary shellcode to spawn a root shell.
Classification
Working Poc 95%
Attack Type
Lpe
Complexity
Moderate
Reliability
Reliable
Target:
Kodak Color Management System (kcms_configure) on Solaris 7 Intel Edition
No auth needed
Prerequisites:
Local access to the target system · Presence of vulnerable kcms_configure binary
MITRE ATT&CK
devstral-2 · analyzed Feb 16, 2026
Full analysis →
References (2)
Core 2
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/831
Third Party Advisory, VDB Entry mailing-list
x_refsource_bugtraq
http://www.securityfocus.com/templates/archive.pike?list=1&msg=38433B7F5A.53F4SHADOWPENGUIN%40fox.nightland.net
Scores
EPSS
0.0080
EPSS Percentile
51.8%
Details
Status
published
Products (2)
sun/solaris
7.0
sun/sunos
5.7
Published
Nov 20, 1999
Tracked Since
Feb 18, 2026