Lucene search

[email protected]NVD:CVE-2004-2306

HistoryDec 31, 2004 - 5:00 a.m.

CVE-2004-2306

2004-12-3105:00:00

[email protected]

web.nvd.nist.gov

CVSS2

4.6

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

AI Score

6.6

Confidence

Low

EPSS

0.001

Percentile

26.5%

JSON

Sun Solaris 7 through 9, when Basic Security Module (BSM) is enabled and the SUNWscpu package has been removed as a result of security hardening, disables mail alerts from the audit_warn script, which might allow attackers to escape detection.

Affected configurations

Nvd

Node

sunsolarisMatch7.0x86

sunsolarisMatch8.0x86

sunsolarisMatch9.0sparc

sunsolarisMatch9.0x86

sunsunosMatch5.7

sunsunosMatch5.8

VendorProductVersionCPE
sunsolaris7.0cpe:2.3:o:sun:solaris:7.0:*:x86:*:*:*:*:*
sunsolaris8.0cpe:2.3:o:sun:solaris:8.0:*:x86:*:*:*:*:*
sunsolaris9.0cpe:2.3:o:sun:solaris:9.0:*:sparc:*:*:*:*:*
sunsolaris9.0cpe:2.3:o:sun:solaris:9.0:*:x86:*:*:*:*:*
sunsunos5.7cpe:2.3:o:sun:sunos:5.7:*:*:*:*:*:*:*
sunsunos5.8cpe:2.3:o:sun:sunos:5.8:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
sun	solaris	7.0	cpe:2.3:o:sun:solaris:7.0::x86:::::
sun	solaris	8.0	cpe:2.3:o:sun:solaris:8.0::x86:::::
sun	solaris	9.0	cpe:2.3:o:sun:solaris:9.0::sparc:::::
sun	solaris	9.0	cpe:2.3:o:sun:solaris:9.0::x86:::::
sun	sunos	5.7	cpe:2.3:o:sun:sunos:5.7:::::::*
sun	sunos	5.8	cpe:2.3:o:sun:sunos:5.8:::::::*

References

sunsolve.sun.com/search/document.do?assetkey=1-26-57483-1

www.ciac.org/ciac/bulletins/o-070.shtml

www.securityfocus.com/bid/13724

exchange.xforce.ibmcloud.com/vulnerabilities/15042

CVSS2

4.6

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

AI Score

6.6

Confidence

Low

EPSS

0.001

Percentile

26.5%

JSON

Related for NVD:CVE-2004-2306

cvelist1 cve1