Info

Disclosure

Jan 30, 2004

Discovery

Unknown

Dates

Exploit

Unknown

Solution

Unknown

Description

Solaris pfexec command contains a flaw that may allow a malicious user to gain access to unauthorized privileges. The issue is triggered when a local unprivileged user with a custom rights profile has an invalid entry for that custom rights profile in the execution profiles database exec_attr(4). The modification of the exec_attr(4) file requires "root" privileges. This flaw may lead to a loss of Confidentiality, Integrity and/or Availability.

Classification

Location: Local Access Required
Attack Type: Authentication Management
Impact: Loss of Integrity, Loss of Availability
Exploit: Exploit Unknown

Solution

Upgrade to versions indicated by vendor, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds. SPARC Platform Solaris 8 with patch 109007-15 Solaris 9 with patch 116237-01 x86 Platform Solaris 8 with patch 109008-15 Solaris 9 with patch 116238-01

Products

Unknown or Incomplete

References

Secunia Advisory ID: 10755
ISS X-Force ID: 14988
CVE ID: 2004-1394 (see also: NVD)
Bugtraq ID: 9534
Vendor Specific Advisory URL: http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert/57453

Credit

Unknown or Incomplete

Direct URL: http://osvdb.org/36218