PT-2011-1292 · Sun · Opensolaris+1

Publicado

2011-10-05

Atualizado

2012-05-14

CVE-2008-7300

CVSS v2.0

8.5

Alta

Vetor

AV:N/AC:M/Au:S/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Sun Solaris versions 10 OpenSolaris versions snv 39 through snv 67

Description The issue in the labeled networking implementation of Solaris Trusted Extensions allows remote authenticated users to bypass a Mandatory Access Control (MAC) policy. This bypass enables access to the global zone when a labeled zone is in the installed state.

Recommendations For Sun Solaris version 10, there is no information about a newer version that contains a fix for this issue. For OpenSolaris versions snv 39 through snv 67, there is no information about a newer version that contains a fix for this issue.

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-264

Identificadores relacionados

CVE-2008-7300

Produtos afetados

Opensolaris

Sun Solaris

PT-2011-1292 · Sun · Opensolaris+1

CVE-2008-7300

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 4