Public exploit available

Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2007-5225 — Sunos vulnerability

CWE-1894 documents4 sources

Severity

4.9MEDIUMNVD

EPSS

0.3%

top 49.76%

CISA KEV

Not in KEV

Exploit

PoC available

Public exploit / PoC exists

Affected products

SUN Sunos

Timeline

PublishedOct 5

Latest updateMay 1

Description

Integer signedness error in FIFO filesystems (named pipes) on Sun Solaris 8 through 10 allows local users to read the contents of unspecified memory locations via a negative maximum length value to the I_PEEK ioctl.

CVSS vector

AV:L/AC:L/C:C/I:N/A:NExploitability: 3.9 | Impact: 6.9

Affected Packages1 packages

▶NVDsun/sunos5.10, 5.8, 5.9+2

🔴Vulnerability Details

GHSA

GHSA-5g83-j23j-wqc6: Integer signedness error in FIFO filesystems (named pipes) on Sun Solaris 8 through 10 allows local users to read the contents of unspecified memory l↗2022-05-01

▶

CVEList

CVE-2007-5225: Integer signedness error in FIFO filesystems (named pipes) on Sun Solaris 8 through 10 allows local users to read the contents of unspecified memory l↗2007-10-05

▶

💥Exploits & PoCs

Exploit-DB

Solaris 8/9/10 - 'fifofs I_PEEK' Local Kernel Memory Leak↗2008-03-10

▶