Lucene search

[email protected]NVD:CVE-2008-3875

HistorySep 02, 2008 - 2:24 p.m.

CVE-2008-3875

2008-09-0214:24:00

CWE-264

[email protected]

web.nvd.nist.gov

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

AI Score

6.1

Confidence

Low

EPSS

Percentile

13.2%

JSON

The kernel in Sun Solaris 8 through 10 and OpenSolaris before snv_90 allows local users to bypass chroot, zones, and the Solaris Trusted Extensions multi-level security policy, and establish a covert communication channel, via unspecified vectors involving system calls.

Affected configurations

Nvd

Node

sunopensolarisRange≤build_snv_89

sunopensolarisMatchbuild_snv_01

sunopensolarisMatchbuild_snv_02

sunopensolarisMatchbuild_snv_13

sunopensolarisMatchbuild_snv_19

sunopensolarisMatchbuild_snv_22

sunopensolarisMatchbuild_snv_39

sunopensolarisMatchbuild_snv_47

sunopensolarisMatchbuild_snv_59

sunopensolarisMatchbuild_snv_64

sunopensolarisMatchbuild_snv_79b

sunopensolarisMatchbuild_snv_87

sunopensolarisMatchbuild_snv_88

sunsolarisMatch8sparc

sunsolarisMatch8x86

sunsolarisMatch9sparc

sunsolarisMatch9x86

sunsolarisMatch10sparc

sunsolarisMatch10x86

VendorProductVersionCPE
sunopensolaris*cpe:2.3:o:sun:opensolaris:*:*:*:*:*:*:*:*
sunopensolarisbuild_snv_01cpe:2.3:o:sun:opensolaris:build_snv_01:*:*:*:*:*:*:*
sunopensolarisbuild_snv_02cpe:2.3:o:sun:opensolaris:build_snv_02:*:*:*:*:*:*:*
sunopensolarisbuild_snv_13cpe:2.3:o:sun:opensolaris:build_snv_13:*:*:*:*:*:*:*
sunopensolarisbuild_snv_19cpe:2.3:o:sun:opensolaris:build_snv_19:*:*:*:*:*:*:*
sunopensolarisbuild_snv_22cpe:2.3:o:sun:opensolaris:build_snv_22:*:*:*:*:*:*:*
sunopensolarisbuild_snv_39cpe:2.3:o:sun:opensolaris:build_snv_39:*:*:*:*:*:*:*
sunopensolarisbuild_snv_47cpe:2.3:o:sun:opensolaris:build_snv_47:*:*:*:*:*:*:*
sunopensolarisbuild_snv_59cpe:2.3:o:sun:opensolaris:build_snv_59:*:*:*:*:*:*:*
sunopensolarisbuild_snv_64cpe:2.3:o:sun:opensolaris:build_snv_64:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
sun	opensolaris	*	cpe:2.3:o:sun:opensolaris::::::::
sun	opensolaris	build_snv_01	cpe:2.3:o:sun:opensolaris:build_snv_01:::::::*
sun	opensolaris	build_snv_02	cpe:2.3:o:sun:opensolaris:build_snv_02:::::::*
sun	opensolaris	build_snv_13	cpe:2.3:o:sun:opensolaris:build_snv_13:::::::*
sun	opensolaris	build_snv_19	cpe:2.3:o:sun:opensolaris:build_snv_19:::::::*
sun	opensolaris	build_snv_22	cpe:2.3:o:sun:opensolaris:build_snv_22:::::::*
sun	opensolaris	build_snv_39	cpe:2.3:o:sun:opensolaris:build_snv_39:::::::*
sun	opensolaris	build_snv_47	cpe:2.3:o:sun:opensolaris:build_snv_47:::::::*
sun	opensolaris	build_snv_59	cpe:2.3:o:sun:opensolaris:build_snv_59:::::::*
sun	opensolaris	build_snv_64	cpe:2.3:o:sun:opensolaris:build_snv_64:::::::*

Rows per page:

1-10 of 191

References

secunia.com/advisories/31667

sunsolve.sun.com/search/document.do?assetkey=1-26-240706-1

www.securityfocus.com/bid/30880

www.securitytracker.com/id?1020780

www.vupen.com/english/advisories/2008/2460

exchange.xforce.ibmcloud.com/vulnerabilities/44753

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5453

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

AI Score

6.1

Confidence

Low

EPSS

Percentile

13.2%

JSON

Related for NVD:CVE-2008-3875

cve1 prion1 cvelist1 nessus6