PT-2004-2671 · Sun · Sun Solaris

Published

2004-12-31

Updated

2018-10-30

CVE-2004-1767

CVSS v2.0

7.2

High

Vector

AV:L/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Sun Solaris versions 2.6 through 9

Description The issue allows local users to gain privileges by loading arbitrary loadable kernel modules (LKM), possibly involving the modload function.

Recommendations For Sun Solaris versions 2.6 through 9, consider restricting the ability to load kernel modules to minimize the risk of exploitation. As a temporary workaround, consider disabling the use of arbitrary loadable kernel modules until a patch is available.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-264

Related Identifiers

CVE-2004-1767

Affected Products

Sun Solaris

PT-2004-2671 · Sun · Sun Solaris

CVE-2004-1767

Weakness Enumeration

Related Identifiers

Affected Products

References · 6