Unrated severityNVD Advisory· Published Feb 23, 2005· Updated Jun 16, 2026

CVE-2004-0481

Description

The logging feature in kcms_configure in the KCMS package on Solaris 8 and 9, and possibly other versions, allows local users to corrupt arbitrary files via a symlink attack on the KCS_ClogFile file.

Affected products

Sun Corporation/Solaris3 versions
cpe:2.3:o:sun:solaris:8.0:*:x86:*:*:*:*:*+ 2 more
- cpe:2.3:o:sun:solaris:8.0:*:x86:*:*:*:*:*
- cpe:2.3:o:sun:solaris:9.0:*:sparc:*:*:*:*:*
- cpe:2.3:o:sun:solaris:9.0:*:x86:*:*:*:*:*
Sun Corporation/Sunos
cpe:2.3:o:sun:sunos:5.8:*:*:*:*:*:*:*
Sun Corporation/KCMSllm-fuzzy
Range: Solaris 8 and 9

Patches

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

sunsolve.sun.com/search/document.donvdPatchVendor Advisory
www.idefense.com/application/poi/displaynvdPatchVendor Advisory

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000