Buffer overflow in the AddSuLog function of the CDE dtaction utility allows local users to gain root privileges via a long user name.
| Software | From | Fixed in |
|---|---|---|
| ibm / aix | 4.1 | 4.1.x |
| ibm / aix | 4.1.1 | 4.1.1.x |
| ibm / aix | 4.1.2 | 4.1.2.x |
| ibm / aix | 4.1.3 | 4.1.3.x |
| ibm / aix | 4.1.4 | 4.1.4.x |
| ibm / aix | 4.1.5 | 4.1.5.x |
| ibm / aix | 4.2 | 4.2.x |
| ibm / aix | 4.2.1 | 4.2.1.x |
| ibm / aix | 4.3 | 4.3.x |
| ibm / aix | 4.3.1 | 4.3.1.x |
| ibm / aix | 4.3.2 | 4.3.2.x |
| sun / sunos | 5.4 | 5.4.x |
| sun / sunos | 5.5 | 5.5.x |
| sun / sunos | 5.5.1 | 5.5.1.x |
| sun / sunos | 5.7 | 5.7.x |
| sun / solaris | 2.4 | 2.4.x |
| sun / solaris | 2.5.1 | 2.5.1.x |
| sun / solaris | 2.6 | 2.6.x |
| sun / solaris | 7.0 | 7.0.x |
| cde / cde | 1.0.1 | 1.0.1.x |
| cde / cde | 1.0.2 | 1.0.2.x |
| cde / cde | 1.1 | 1.1.x |
| cde / cde | 1.2 | 1.2.x |
| cde / cde | 2.0 | 2.0.x |
| cde / cde | 2.1 | 2.1.x |
| digital / unix | 4.0d | 4.0d.x |
| digital / unix | 4.0e | 4.0e.x |
| digital / unix | 4.0f | 4.0f.x |