Lucene search

MitreCVE-2009-0477

HistoryFeb 08, 2009 - 9:30 p.m.

CVE-2009-0477

2009-02-0821:30:09

CWE-264

mitre

web.nvd.nist.gov

cve-2009-0477

vulnerability

opensolaris

sun

privilege escalation

nvd

process filesystem

proc filesystem

local exploit

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

AI Score

6.6

Confidence

Low

EPSS

Percentile

13.2%

JSON

Unspecified vulnerability in the process (aka proc) filesystem in Sun OpenSolaris snv_85 through snv_100 allows local users to gain privileges via vectors related to the contract filesystem.

Affected configurations

Nvd

Node

sunopensolarisMatchsnv_85sparc

sunopensolarisMatchsnv_85x86

sunopensolarisMatchsnv_86sparc

sunopensolarisMatchsnv_86x86

sunopensolarisMatchsnv_87sparc

sunopensolarisMatchsnv_87x86

sunopensolarisMatchsnv_88sparc

sunopensolarisMatchsnv_88x86

sunopensolarisMatchsnv_89sparc

sunopensolarisMatchsnv_89x86

sunopensolarisMatchsnv_90sparc

sunopensolarisMatchsnv_90x86

sunopensolarisMatchsnv_91sparc

sunopensolarisMatchsnv_91x86

sunopensolarisMatchsnv_92sparc

sunopensolarisMatchsnv_92x86

sunopensolarisMatchsnv_93sparc

sunopensolarisMatchsnv_93x86

sunopensolarisMatchsnv_94sparc

sunopensolarisMatchsnv_94x86

sunopensolarisMatchsnv_95sparc

sunopensolarisMatchsnv_95x86

sunopensolarisMatchsnv_96sparc

sunopensolarisMatchsnv_96x86

sunopensolarisMatchsnv_97sparc

sunopensolarisMatchsnv_97x86

sunopensolarisMatchsnv_98sparc

sunopensolarisMatchsnv_98x86

sunopensolarisMatchsnv_99sparc

sunopensolarisMatchsnv_99x86

sunopensolarisMatchsnv_100sparc

sunopensolarisMatchsnv_100x86

VendorProductVersionCPE
sunopensolarissnv_85cpe:2.3:o:sun:opensolaris:snv_85:*:sparc:*:*:*:*:*
sunopensolarissnv_85cpe:2.3:o:sun:opensolaris:snv_85:*:x86:*:*:*:*:*
sunopensolarissnv_86cpe:2.3:o:sun:opensolaris:snv_86:*:sparc:*:*:*:*:*
sunopensolarissnv_86cpe:2.3:o:sun:opensolaris:snv_86:*:x86:*:*:*:*:*
sunopensolarissnv_87cpe:2.3:o:sun:opensolaris:snv_87:*:sparc:*:*:*:*:*
sunopensolarissnv_87cpe:2.3:o:sun:opensolaris:snv_87:*:x86:*:*:*:*:*
sunopensolarissnv_88cpe:2.3:o:sun:opensolaris:snv_88:*:sparc:*:*:*:*:*
sunopensolarissnv_88cpe:2.3:o:sun:opensolaris:snv_88:*:x86:*:*:*:*:*
sunopensolarissnv_89cpe:2.3:o:sun:opensolaris:snv_89:*:sparc:*:*:*:*:*
sunopensolarissnv_89cpe:2.3:o:sun:opensolaris:snv_89:*:x86:*:*:*:*:*

Vendor	Product	Version	CPE
sun	opensolaris	snv_85	cpe:2.3:o:sun:opensolaris:snv_85::sparc:::::
sun	opensolaris	snv_85	cpe:2.3:o:sun:opensolaris:snv_85::x86:::::
sun	opensolaris	snv_86	cpe:2.3:o:sun:opensolaris:snv_86::sparc:::::
sun	opensolaris	snv_86	cpe:2.3:o:sun:opensolaris:snv_86::x86:::::
sun	opensolaris	snv_87	cpe:2.3:o:sun:opensolaris:snv_87::sparc:::::
sun	opensolaris	snv_87	cpe:2.3:o:sun:opensolaris:snv_87::x86:::::
sun	opensolaris	snv_88	cpe:2.3:o:sun:opensolaris:snv_88::sparc:::::
sun	opensolaris	snv_88	cpe:2.3:o:sun:opensolaris:snv_88::x86:::::
sun	opensolaris	snv_89	cpe:2.3:o:sun:opensolaris:snv_89::sparc:::::
sun	opensolaris	snv_89	cpe:2.3:o:sun:opensolaris:snv_89::x86:::::

Rows per page:

1-10 of 321

References

sunsolve.sun.com/search/document.do?assetkey=1-66-244026-1

www.ioactive.com/pdfs/OpenSolarisUPtrDeref.pdf

www.securityfocus.com/bid/33654

www.vupen.com/english/advisories/2009/0352

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

AI Score

6.6

Confidence

Low

EPSS

Percentile

13.2%

JSON

Related for CVE-2009-0477