PT-2008-5210 · Sun · Opensolaris+1

Publicado

2008-09-02

Atualizado

2017-09-29

CVE-2008-3875

CVSS v2.0

7.2

Alta

Vetor

AV:L/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Sun Solaris versions 8 through 10 OpenSolaris versions prior to snv 90

Description The issue allows local users to bypass security restrictions, including chroot, zones, and the Solaris Trusted Extensions multi-level security policy, and establish a covert communication channel. This is achieved through unspecified vectors involving system calls.

Recommendations For Sun Solaris versions 8 through 10, update to a version outside of the affected range to resolve the issue. For OpenSolaris versions prior to snv 90, update to version snv 90 or later to resolve the issue.

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-264

Identificadores relacionados

CVE-2008-3875

Produtos afetados

Opensolaris

Sun Solaris

PT-2008-5210 · Sun · Opensolaris+1

CVE-2008-3875

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 8