Directory traversal vulnerability in Sun Kodak Color Management System (KCMS) library service daemon (kcms_server) allows remote attackers to read arbitrary files via the KCS_OPEN_PROFILE procedure.
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2592
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A195
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A120
https://exchange.xforce.ibmcloud.com/vulnerabilities/11129
http://www.securityfocus.com/bid/6665
http://www.kb.cert.org/vuls/id/850785
http://www.entercept.com/news/uspr/01-22-03.asp
http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert/50104