Sun Alert 237987 Manipulated Tag Files used with Solaris Text Editors May Lead to Execution of Arbitrary Code

Product: Solaris 8 Operating System Solaris 9 Operating System Solaris 10 Operating System

A security vulnerability in the Solaris text editors (vi(1), ex(1), vedit(1), view(1), edit(1)), related to the handling of tags (see ctags(1)) may allow a local unprivileged user to execute arbitrary code with the privileges of another user.

Sun acknowledges with thanks, "Eli the Bearded" for bringing this issue to our attention.

State: Resolved
First released: 17-Sep-2008
Comments:

Post a Comment:
Comments are closed for this entry.
About

This blog provides security vulnerability fix notifications relevant to third party software components distributed and supported as part of Oracle Products.
Summarized version of this blog is available as a mapping of CVEs and solutions.

Search

Archives
« April 2014
SunMonTueWedThuFriSat
  
2
3
4
5
6
7
8
9
10
11
12
13
14
16
18
19
20
21
22
23
24
25
26
27
28
29
30
   
       
Today