CVE-2007-3471Improper Restriction of Operations within the Bounds of a Memory Buffer in Solaris

3 documents3 sources
Severity
7.2HIGHNVD
EPSS
0.1%
top 72.99%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
SUN Solaris
Timeline
PublishedJun 28
Latest updateMay 1

Description

Buffer overflow in the dtsession Common Desktop Environment (CDE) Session Manager in Sun Solaris 8, 9, and 10 allows local users to execute arbitrary code via unspecified vectors.

CVSS vector

AV:L/AC:L/C:C/I:C/A:CExploitability: 3.9 | Impact: 10.0

Affected Packages1 packages

NVDsun/solaris10.0, 8.0, 9.0+2

Patches

Patch: sunsolve.sun.comPatch: sunsolve.sun.com

🔴Vulnerability Details

2
GHSA
GHSA-gpmm-pwfh-wr28: Buffer overflow in the dtsession Common Desktop Environment (CDE) Session Manager in Sun Solaris 8, 9, and 10 allows local users to execute arbitrary2022-05-01
CVEList
CVE-2007-3471: Buffer overflow in the dtsession Common Desktop Environment (CDE) Session Manager in Sun Solaris 8, 9, and 10 allows local users to execute arbitrary2007-06-28
CVE-2007-3471 — SUN Solaris vulnerability | cvebase