« Update JDK in Sun... | Main | Denial of Service... »
17 Sep 2008 Sun Alert 237987 Manipulated Tag Files used with Solaris Text Editors May Lead to Execution of Arbitrary Code
posted by security in Alerts
Product: Solaris 8 Operating System Solaris 9 Operating System Solaris 10 Operating System

A security vulnerability in the Solaris text editors (vi(1), ex(1), vedit(1), view(1), edit(1)), related to the handling of tags (see ctags(1)) may allow a local unprivileged user to execute arbitrary code with the privileges of another user.

Sun acknowledges with thanks, "Eli the Bearded" for bringing this issue to our attention.

State: Resolved
First released: 17-Sep-2008
Sun Alert Link: http://sunsolve.sun.com/search/document.do?assetkey=1-66-237987-1
Permalink |
Comments:

Post a Comment:

Comments are closed for this entry.

« Update JDK in Sun... | Main | Denial of Service... »

Sun Certified Security Administrator

Download Solaris
Patches and Updates
Download Solaris Security Toolkit

« July 2009
SunMonTueWedThuFriSat
   
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
 
       
Today


Company Info   |   Contact   |   Terms of Use   |   Privacy   |   Trademarks   |   Copyright 2008 Sun Microsystems, Inc.