CVE-2003-1056Solaris vulnerability

5 documents4 sources
Severity
7.2HIGHNVD
EPSS
0.0%
top 85.59%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
SUN SolarisSUN Sunos
Timeline
PublishedDec 11
Latest updateApr 29

Description

The ed editor for Sun Solaris 2.6, 7, and 8 allows local users to create or overwrite arbitrary files via a symlink attack on temporary files.

CVSS vector

AV:L/AC:L/C:C/I:C/A:CExploitability: 3.9 | Impact: 10.0

Affected Packages2 packages

NVDsun/solaris2.6, 7.0, 8.0+2
NVDsun/sunos5.7, 5.8+1

Patches

Patch: secunia.comPatch: sunsolve.sun.comPatch: www.auscert.org.au

🔴Vulnerability Details

2
GHSA
GHSA-6mwq-7jcm-8gmw: The ed editor for Sun Solaris 22022-04-29
CVEList
CVE-2003-1056: The ed editor for Sun Solaris 22005-02-08

💥Exploits & PoCs

2
Exploit-DB
QuickTime Streaming Server - 'parse_xml.cgi' Remote Execution (Metasploit)2010-07-03
Exploit-DB
Firebird 1.0.2 (FreeBSD 4.7-RELEASE) - Local Privilege Escalation2003-05-12
CVE-2003-1056 — SUN Solaris vulnerability | cvebase