CVE-2008-0730

Name of the Vulnerable Software and Affected Versions Sun Solaris 10

Description The issue concerns the Simplified Chinese, Traditional Chinese, Korean, and Thai language input methods in Sun Solaris 10. These input methods create files and directories with weak permissions under .iiim/le and .Xlocale in home directories. This weakness might allow local users to write to, or read from, the home directories of other users.

Recommendations For Sun Solaris 10, consider restricting access to the .iiim/le and .Xlocale directories in home directories to prevent unauthorized reading or writing. As a temporary workaround, restrict the use of the affected language input methods until a proper fix is applied. At the moment, there is no information about a newer version that contains a fix for this vulnerability.