oval:org.mitre.oval:def:195

Definition Id: oval:org.mitre.oval:def:195

Oval ID:	oval:org.mitre.oval:def:195
Title:	Solaris 8 KCMS Arbitrary File Access Vulnerability
Description:	Directory traversal vulnerability in Sun Kodak Color Management System (KCMS) library service daemon (kcms_server) allows remote attackers to read arbitrary files via the KCS_OPEN_PROFILE procedure.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2003-0027	Version:	2
Platform(s):	Sun Solaris 8	Product(s):	kcms_server
Definition Synopsis:
Software section Solaris 8 Installed AND File kcms_server exists AND Configuration section inetd.conf contains kcms_server AND inetd running AND File kcms_server executable and SUID or SGID File kcms_server executable and SUID or SGID AND File kcms_server executable and SUID or SGID AND File kcms_server executable and SUID or SGID