CVE-2002-0158

SUN Solaris - Buffer Overflow

Title source: rule

Description

Buffer overflow in Xsun on Solaris 2.6 through 8 allows local users to gain root privileges via a long -co (color database) command line argument.

Exploits (1)

exploitdb WORKING POC VERIFIED

by gloomy · clocalsolaris

https://www.exploit-db.com/exploits/21360

View Code ZIP pw:eip

References (7)

[Third Party Advisory, VDB Entry] https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/8703

[Exploit, Patch, Vendor Advisory] http://archives.neohapsis.com/archives/vulnwatch/2002-q2/0000.html

[Third Party Advisory, VDB Entry] https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A33

[Mailing List] http://marc.info/?l=bugtraq&m=101776858410652&w=2

[Various Sources] http://sunsolve.Sun.COM/pub-cgi/retrieve.pl?doc=fpatches%2F108652

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/4408

Scores

EPSS 0.0036

EPSS Percentile 58.1%

Details

Status published

Products (4)

sun/solaris 2.6

sun/solaris 7.0 (2 CPE variants)

sun/solaris 8.0 (2 CPE variants)

sun/sunos

Published Apr 02, 2002

Tracked Since Feb 18, 2026