Kodak Color Management System Utilities Local Arbitrary Command Execution Vulnerability

info
discussion
exploit
solution
references

Kodak Color Management System Utilities Local Arbitrary Command Execution Vulnerability

Kodak Color Management System is prone to a local command-execution vulnerability.

A local attacker can exploit this issue to execute arbitrary commands with superuser privileges.

This vulnerability is confirmed to affect the Kodak Color Managment System distributed with Sun Solaris 8 and 9. Other platforms may also be affected.