|
Family: RPC --> Category: infos
Kcms Profile Server Vulnerability Scan
Vulnerability Scan Summary Checks the presence of a Kcms service
Detailed Explanation for this Vulnerability Test
The Kodak Color Management System service is running.
The KCMS service on Solaris 2.5 could allow a local user
to write to arbitrary files and gain root access.
*** This warning may be a false
*** positive since the existence
*** of the bug has not been tested.
Patches: 107337-02 SunOS 5.7 has been released
and the following should be out soon:
111400-01 SunOS 5.8, 111401-01 SunOS 5.8_x86
Solution : Disable suid, side effects are minimal.
http://www.eeye.com/html/Research/Advisories/AD20010409.html
http://www.securityfocus.com/bid/2605
See also: http://packetstorm.decepticons.org/advisories/ibm-ers/96-09
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|