CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2004-0481

The logging feature in kcms_configure in the KCMS package on Solaris 8 and 9, and possibly other versions, allows local users to corrupt arbitrary files via a symlink attack on the KCS_ClogFile file.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 17.0%

CVSS Severity

CVSS v2 Score 2.1

References

http://sunsolve.sun.com/search/document.do?assetkey=1-26-57706-1
http://www.idefense.com/application/poi/display?id=206&type=vulnerabilities
http://sunsolve.sun.com/search/document.do?assetkey=1-26-57706-1
http://www.idefense.com/application/poi/display?id=206&type=vulnerabilities

Products affected by CVE-2004-0481

Sun » Solaris » Version: 8.0

cpe:2.3:o:sun:solaris:8.0
Sun » Solaris » Version: 9.0

cpe:2.3:o:sun:solaris:9.0
Sun » Sunos » Version: 5.8

cpe:2.3:o:sun:sunos:5.8

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2004-0481

Products

Pricing

Contact Us