CVE-2002-1980 — Improper Restriction of Operations within the Bounds of a Memory Buffer in Solaris

3 documents3 sources

Severity

7.2HIGHNVD

EPSS

0.1%

top 81.27%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

SUN Solaris SUN Sunos

Timeline

PublishedDec 31

Latest updateApr 30

Description

Buffer overflow in Volume Manager daemon (vold) of Sun Solaris 2.5.1 through 8 allows local users to execute arbitrary code via unknown attack vectors.

CVSS vector

AV:L/AC:L/C:C/I:C/A:CExploitability: 3.9 | Impact: 10.0

Affected Packages2 packages

▶NVDsun/solaris4 versions+3

▶NVDsun/sunos5.5.1, 5.7, 5.8+2

Patches

Patch: sunsolve.sun.com ↗Patch: www.iss.net ↗Patch: www.securityfocus.com ↗

🔴Vulnerability Details

GHSA

GHSA-h7hf-87f6-rwx5: Buffer overflow in Volume Manager daemon (vold) of Sun Solaris 2↗2022-04-30

▶

CVEList

CVE-2002-1980: Buffer overflow in Volume Manager daemon (vold) of Sun Solaris 2↗2005-06-28

▶