PT-2003-2020 · Oracle · Solaris

Published

2003-08-20

Updated

2018-10-30

CVE-2003-1063

CVSS v2.0

7.5

High

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions Solaris versions 2.6 and 7

Description The issue allows remote attackers to bypass the intended security policy by silently reenabling services due to the patches overwriting the inetd.conf file.

Recommendations For Solaris versions 2.6 and 7, manually review and update the inetd.conf file after applying patches to ensure that the intended security policy is maintained and no unwanted services are reenabled.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2003-1063

Affected Products

Solaris

PT-2003-2020 · Oracle · Solaris

CVE-2003-1063

Related Identifiers

Affected Products

References · 5