Executive Summary

Title Sun Alert 266348 Security Vulnerability in the w(1) Utility may Lead to Execution of Arbitrary Code
Name SUN-266348 First vendor Publication 2009-09-10
Vendor Sun Last vendor Modification 2009-11-02
Severity (Vendor) N/A Revision N/A

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score NA
Base Score NA Environmental Score NA
impact SubScore NA Temporal Score NA
Exploitabality Sub Score NA
Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:L/AC:L/Au:N/C:C/I:C/A:C)
Cvss Base Score 7.2 Attack Range Local
Cvss Impact Score 10 Attack Complexity Low
Cvss Expoit Score 3.9 Authentication None Required
Calculate full CVSS 2.0 Vectors scores


Product: Solaris 8, Solaris 9, Solaris 10, OpenSolaris

A heap overflow vulnerability in the w(1) utility may allow a local unprivileged user to execute arbitrary code with root privileges.

Sun acknowledges with thanks, Monarch Rich "1c239c43f521145fa8385d64a9c32243 http://unsecurityresearch.blogspot.com" for discovering and reporting this issue.
State: Resolved
First released: 10-Sep-2009

Original Source

Url : http://blogs.sun.com/security/entry/sun_alert_266348_security_vulnerability

CWE : Common Weakness Enumeration

% Id Name
100 % CWE-119 Failure to Constrain Operations within the Bounds of a Memory Buffer

CPE : Common Platform Enumeration

Os 246
Os 6

OpenVAS Exploits

Date Description
2009-10-13 Name : Solaris Update for w and whodo 142285-01
File : nvt/gb_solaris_142285_01.nasl
2009-10-13 Name : Solaris Update for w and whodo 142286-01
File : nvt/gb_solaris_142286_01.nasl
2009-06-03 Name : Solaris Update for usr/lib/utmp_update 113718-02
File : nvt/gb_solaris_113718_02.nasl
2009-06-03 Name : Solaris Update for utmp_update 113996-02
File : nvt/gb_solaris_113996_02.nasl

Open Source Vulnerability Database (OSVDB)

Id Description
58110 Solaris w(1) Utility Local Overflow

Sun Solaris contains a flaw that may allow a malicious user to gain access to unauthorized privileges. No further details have been provided.

Nessus® Vulnerability Scanner

Date Description
2004-07-12 Name : The remote host is missing Sun Security Patch number 113718-05
File : solaris9_113718.nasl - Type : ACT_GATHER_INFO
2004-07-12 Name : The remote host is missing Sun Security Patch number 113996-06
File : solaris9_x86_113996.nasl - Type : ACT_GATHER_INFO