CVE-2003-1124
CVE-2003-1124 is a medium-severity vulnerability in Sun Management+center with a CVSS 2.0 base score of 4.6. It is not currently listed as actively exploited by CISA, and its EPSS exploit-prediction score is low.
Key facts
- Severity: Medium (CVSS 2.0 base score 4.6)
- EPSS exploit prediction: 0% (28th percentile)
- Actively exploited: Not listed in CISA KEV
- Affected product: Sun Management+center
- Published:
- Last modified:
Description
Unknown vulnerability in Sun Management Center (SunMC) 2.1.1, 3.0, and 3.0 Revenue Release (RR), when installed and run by root, allows local users to create or modify arbitrary files.
Frequently asked questions
- What is CVE-2003-1124?
- Unknown vulnerability in Sun Management Center (SunMC) 2.1.1, 3.0, and 3.0 Revenue Release (RR), when installed and run by root, allows local users to create or modify arbitrary files.
- How severe is CVE-2003-1124?
- CVE-2003-1124 has a CVSS 2.0 base score of 4.6, rated medium severity.
- Is CVE-2003-1124 being actively exploited?
- It is not currently listed in CISA's KEV catalog. Its EPSS exploit-prediction score is 0% (28th percentile), an estimate of the probability of exploitation in the next 30 days.
- What products are affected by CVE-2003-1124?
- CVE-2003-1124 primarily affects Sun Management+center. In total, 3 product configurations (CPEs) are listed as vulnerable; see the affected-products list for the exact versions.
- How do I fix CVE-2003-1124?
- Review the linked vendor and NVD advisories for patched versions and mitigations, then upgrade or apply the recommended workaround.
- When was CVE-2003-1124 published?
- CVE-2003-1124 was published on 2003-12-31 and last updated on 2026-06-16.
References
- http://secunia.com/advisories/9073
- http://sunsolve.sun.com/search/document.do?assetkey=1-26-55141-1
- http://www.kb.cert.org/vuls/id/758932
- http://www.securityfocus.com/bid/7960
- https://exchange.xforce.ibmcloud.com/vulnerabilities/12343
Affected products (3)
- cpe:2.3:a:sun:management\+center:2.1.1:*:*:*:*:*:*:*
- cpe:2.3:a:sun:management\+center:3.0:*:*:*:*:*:*:*
- cpe:2.3:a:sun:management\+center:3.0_revenue_release:*:*:*:*:*:*:*
More vulnerabilities in Sun Management+center
- CVE-2007-6480 — Critical (CVSS 9.4): The Oracle database component in Sun Management Center (Sun MC) 3.6.1, 3.6, and 3.5 Update 1 has a default account,…
- CVE-2001-1479 — Low (CVSS 2.1): smcboot in Sun SMC (Sun Management Center) 2.0 in Solaris 8 allows local users to delete arbitrary files via a symlink…