PT-2011-1292 · Sun · Opensolaris+1

Published

2011-10-05

Updated

2012-05-14

CVE-2008-7300

CVSS v2.0

8.5

High

Vector

AV:N/AC:M/Au:S/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Sun Solaris versions 10 OpenSolaris versions snv 39 through snv 67

Description The issue in the labeled networking implementation of Solaris Trusted Extensions allows remote authenticated users to bypass a Mandatory Access Control (MAC) policy. This bypass enables access to the global zone when a labeled zone is in the installed state.

Recommendations For Sun Solaris version 10, there is no information about a newer version that contains a fix for this issue. For OpenSolaris versions snv 39 through snv 67, there is no information about a newer version that contains a fix for this issue.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-264

Related Identifiers

CVE-2008-7300

Affected Products

Opensolaris

Sun Solaris

PT-2011-1292 · Sun · Opensolaris+1

CVE-2008-7300

Weakness Enumeration

Related Identifiers

Affected Products

References · 4