{"vuid":"VU#451275","idnumber":"451275","name":"Curses library vulnerable to buffer overflow","keywords":["SCO","Sun","SunOS","curses library","libcurses.a","rtpm","atcronsh","OpenServer","UnixWare"],"overview":"The curses library derived from System V contains a buffer overflow. A local user can execute a command that uses this library to exploit the vulnerability and gain elevated privileges.","clean_desc":"There is a buffer overflow in the curses library that could permit a local user to gain elevated privileges. Various commands will call on the libcurses library to get the term settings either from the environment variable TERM, or a command line argument.","impact":"A local user can gain elevated privileges.","resolution":"Apply the appropriate patch from your vendor. See our \"Systems Affected\" section below.","workarounds":"","sysaffected":"","thanks":"This vulnerability was discovered by Kevin Finisterre <dotslash@snosoft.com> and was reported to the vuln-dev@securityfocus.com mailing list. Caldera/SCO has also released an advisory \n(CSSA-2001-SCO.1)","author":"This document was written by Jason Rafail.","public":["h","t","t","p",":","/","/","w","w","w",".","s","e","c","u","r","i","t","y","t","r","a","c","k","e","r",".","c","o","m","/","a","l","e","r","t","s","/","2","0","0","1","/","J","u","n","/","1","0","0","1","8","2","5",".","h","t","m","l"],"cveids":["CVE-2001-1148"],"certadvisory":"","uscerttechnicalalert":null,"datecreated":"2001-07-10T16:55:16Z","publicdate":"2001-06-13T00:00:00Z","datefirstpublished":"2001-07-27T19:22:37Z","dateupdated":"2001-09-17T13:47:24Z","revision":20,"vrda_d1_directreport":"","vrda_d1_population":"","vrda_d1_impact":"","cam_widelyknown":"19","cam_exploitation":"0","cam_internetinfrastructure":"5","cam_population":"10","cam_impact":"8","cam_easeofexploitation":"20","cam_attackeraccessrequired":"1","cam_scorecurrent":"0.72","cam_scorecurrentwidelyknown":"0.75","cam_scorecurrentwidelyknownexploited":"1.35","ipprotocol":"","cvss_accessvector":"","cvss_accesscomplexity":"","cvss_authentication":null,"cvss_confidentialityimpact":"","cvss_integrityimpact":"","cvss_availabilityimpact":"","cvss_exploitablity":null,"cvss_remediationlevel":"","cvss_reportconfidence":"","cvss_collateraldamagepotential":"","cvss_targetdistribution":"","cvss_securityrequirementscr":"","cvss_securityrequirementsir":"","cvss_securityrequirementsar":"","cvss_basescore":"","cvss_basevector":"","cvss_temporalscore":"","cvss_environmentalscore":"","cvss_environmentalvector":"","metric":0.72,"vulnote":null}