CVE-2011-0902

Multiple untrusted search path vulnerabilities in the Java Service in Sun Microsystems SunScreen Firewall on SunOS 5.9 allow local users to execute arbitrary code via a modified (1) PATH or (2) LD_LIBRARY_PATH environment variable.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
6.9 UNKNOWN
LOCAL
MEDIUM
AV:L/AC:M/Au:N/C:C/I:C/A:C
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 90%
VendorProductVersion
oraclesun_microsystems_sunscreen_firewall
*
𝑥
= Vulnerable software versions
References
http://www.exploit-db.com/exploits/16041
http://www.securityfocus.com/bid/45963
https://exchange.xforce.ibmcloud.com/vulnerabilities/64887
http://www.exploit-db.com/exploits/16041
http://www.securityfocus.com/bid/45963
https://exchange.xforce.ibmcloud.com/vulnerabilities/64887