Lucene search

[email protected]CVE-2011-0902

HistoryFeb 07, 2011 - 9:00 p.m.

CVE-2011-0902

2011-02-0721:00:16

[email protected]

web.nvd.nist.gov

sun microsystems

sunscreen firewall

java

vulnerability

cve-2011-0902

nvd

6.9 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

7.6 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

10.5%

JSON

Multiple untrusted search path vulnerabilities in the Java Service in Sun Microsystems SunScreen Firewall on SunOS 5.9 allow local users to execute arbitrary code via a modified (1) PATH or (2) LD_LIBRARY_PATH environment variable.

Affected configurations

NVD

Node

oraclesun_microsystems_sunscreen_firewall

AND

sunsunosMatch5.9

CPENameOperatorVersion
oracle:sun_microsystems_sunscreen_firewalloracle sun microsystems sunscreen firewalleq*

CPE	Name	Operator	Version
oracle:sun_microsystems_sunscreen_firewall	oracle sun microsystems sunscreen firewall	eq	*

References

www.exploit-db.com/exploits/16041

www.securityfocus.com/bid/45963

exchange.xforce.ibmcloud.com/vulnerabilities/64887

6.9 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

7.6 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

10.5%

JSON

Related for CVE-2011-0902

cvelist1 nvd1 prion1