6 matches found
Solaris 10 (x86) : 119255-91
SunOS 5.10x86: Install and Patch Utilitie. Date this patch was last updated by Sun : Feb/23/15 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc'; include'compat.inc'; if...
CVE-2011-0412
CVE-2011-0412 affects Oracle Solaris 8, 9, and 10. The vulnerability arises from back-out patch files (undo.Z) stored unencrypted with world-readable permissions under /var/sadm/pkg/, enabling local users to access password hashes and perform brute-force password guessing. Remediation details in ...
Oracle Solaris 10回滚补丁文件密码哈希泄露漏洞
CVE ID: CVE-2011-0412 Solaris是Sun Microsystems研发的计算机操作系统。 Oracle Solaris 10回滚补丁文件undo.Z包含未授权用户可读的密码哈希,本地用户可通过此漏洞泄露敏感信息。 此安全漏洞源于某些软件包的/var/sadm/pkg/pkgname/save/patchid/以不安全方式存储了"undo.Z"回滚文件,可导致提取包含root和其他用户的密码哈希的文件。 Sun Solaris 10.0 厂商补丁: Sun --- 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:...
Oracle Solaris 10 password hashes leaked through back-out patch files
Overview Oracle Solaris 10 back-out patch files undo.Z contain password hashes which may be readable by unprivileged users. Description The root password hash along with other users' password hashes may be contained in the back-out patch files. In some instances, these files may be readable by...
Solaris 10 (sparc) : 119254-93 (deprecated)
SunOS 5.10: Install and Patch Utilities Patch. Date this patch was last updated by Sun : Mar/29/16 This plugin has been deprecated and either replaced with individual 119254 patch-revision plugins, or deemed non-security related. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. @DEPRECATED@...
Solaris 9 (sparc) : 113713-30
SunOS 5.9: pkg utilities Patch. Date this patch was last updated by Sun : Apr/05/11 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc'; include'compat.inc'; if description...