Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
saintSAINT CorporationSAINT:6330EE9B967BD90B53D6B27FC5697C48
HistoryJun 22, 2007 - 12:00 a.m.

Solaris loadable kernel module directory traversal

2007-06-2200:00:00
SAINT Corporation
www.saintcorporation.com
16

0.001 Low

EPSS

Percentile

25.7%

JSON

Added: 06/22/2007
CVE: CVE-2004-1767
BID: 9477
OSVDB: 15128

Background

Loadable kernel modules are programs which can be dynamically loaded into the kernel.

Problem

A directory traversal vulnerability in the **vfs_getvfssw** function in the Solaris kernel allows unprivileged users to load their own kernel modules through a specially crafted **mount** or **sysfs** system call, leading to privilege elevation.

Resolution

Apply the patch referenced in Sun Alert 57479.

References

<http://www.kb.cert.org/vuls/id/702526&gt;

Platforms

SunOS / Solaris

Related

cve 2
saint 3
nvd 2
cvelist 2
cve
cve
CVE-2004-1767
2005-03-10 05:00:00
CVE-2004-2686
2007-09-23 23:00:00
saint
saint
Solaris loadable kernel module directory traversal
2007-06-22 00:00:00
Solaris loadable kernel module directory traversal
2007-06-22 00:00:00
Solaris loadable kernel module directory traversal
2007-06-22 00:00:00
nvd
nvd
CVE-2004-1767
2004-12-31 05:00:00
CVE-2004-2686
2004-12-31 05:00:00
cvelist
cvelist
CVE-2004-1767
2005-03-10 05:00:00
CVE-2004-2686
2007-09-23 23:00:00

0.001 Low

EPSS

Percentile

25.7%

JSON
Related for SAINT:6330EE9B967BD90B53D6B27FC5697C48
cve2saint3nvd2cvelist2