CVE-2003-1058
Solaris 2.6-9 - Denial of Service and Arbitrary File Write via Xsun DGA Mode Symlink Attack
Title source: llmDescription
The Xsun server for Sun Solaris 2.6 through 9, when running in Direct Graphics Access (DGA) mode, allows local users to cause a denial of service (Xsun crash) or to create or overwrite arbitrary files on the system, probably via a symlink attack on temporary server files.
References (6)
Core 6
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/9147
Patch, Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/10346
Patch, Vendor Advisory vendor-advisory
x_refsource_sunalert
http://sunsolve.sun.com/search/document.do?assetkey=1-26-57419-1
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/13890
Patch, Vendor Advisory third-party-advisory
government-resource
x_refsource_ciac
http://www.ciac.org/ciac/bulletins/o-033.shtml
Patch, Vendor Advisory vdb-entry
x_refsource_osvdb
http://www.osvdb.org/2892
Scores
EPSS
0.0008
EPSS Percentile
22.7%
Details
Status
published
Products (7)
sun/solaris
2.6
sun/solaris
7.0
sun/solaris
8.0
sun/solaris
9.0 (2 CPE variants)
sun/sunos
sun/sunos
5.7
sun/sunos
5.8
Published
Dec 03, 2003
Tracked Since
Feb 18, 2026