3 matches found
Solaris loadable kernel module directory traversal
Added: 06/22/2007 CVE: CVE-2004-1767 BID: 9477 OSVDB: 15128 Background Loadable kernel modules are programs which can be dynamically loaded into the kernel. Problem A directory traversal vulnerability in the vfsgetvfssw function in the Solaris kernel allows unprivileged users to load their own...
CVE-2004-1767
The kernel in Solaris 2.6, 7, 8, and 9 allows local users to gain privileges by loading arbitrary loadable kernel modules LKM, possibly involving the modload function...
CVE-2004-1767
The Solaris kernel (versions 2.6, 7, 8, and 9) contains a local privilege escalation via a directory traversal in the vfs_getvfssw function. Unprivileged users can load their own kernel modules by crafting mount or sysfs system calls, potentially elevating privileges. Several reputable sources (S...