CVE-2003-1058

Name of the Vulnerable Software and Affected Versions Xsun server for Sun Solaris versions 2.6 through 9

Description The issue allows local users to cause a denial of service, resulting in an Xsun crash, or to create or overwrite arbitrary files on the system. This is likely achieved via a symlink attack on temporary server files when the Xsun server is running in Direct Graphics Access (DGA) mode.

Recommendations For Xsun server for Sun Solaris versions 2.6 through 9, consider disabling the DGA mode as a temporary workaround to minimize the risk of exploitation. Restrict access to temporary server files to prevent symlink attacks.