CVE-2006-6495

Name of the Vulnerable Software and Affected Versions Sun Solaris versions 8 through 10

Description The issue is a stack-based buffer overflow in ld.so.1, allowing local users to execute arbitrary code via large precision padding values in a format string specifier in the format parameter of the doprf function. This issue does not normally cross privilege boundaries, except in cases where malicious message files are introduced externally or if it is leveraged with other vulnerabilities.

Recommendations For Sun Solaris versions 8 through 10, at the moment, there is no information about a newer version that contains a fix for this vulnerability.