|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
[sec-adv] Sun Solaris Database Function Privilege Escalation Vulnerabilities
From: Secunia Security Advisories (sec-adv
secunia.com)
Date: Fri Jun 20 2003 - 06:49:20 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
TITLE:
Sun Solaris Database Function Privilege Escalation Vulnerabilities
READ ONLINE:
http://www.secunia.com/advisories/9088/
CRITICAL:
Less critical
IMPACT:
Privilege escalation
WHERE:
Local system
OPERATING SYSTEM:
Sun Solaris 7
Sun Solaris 8
Sun Solaris 9
Sun Solaris 2.6
DESCRIPTION:
Sun has reported some vulnerabilities in Solaris, which can be
exploited by malicious, local users to escalate their privileges on a
vulnerable system.
The vulnerabilities are caused due to boundary errors in the
"dbm_open()", and "dbminit()" database functions. These can be
exploited to cause buffer overflows, which may allow execution of
arbitrary code with "root" privileges.
SOLUTION:
Apply patches.
-- SPARC Platform --
Solaris 2.6:
http://sunsolve.sun.com/pub-cgi/findPatch.pl?patchId=105210&rev=47
http://sunsolve.sun.com/pub-cgi/findPatch.pl?patchId=105377&rev=06
http://sunsolve.sun.com/pub-cgi/findPatch.pl?patchId=105401&rev=43
Solaris 7:
http://sunsolve.sun.com/pub-cgi/findPatch.pl?patchId=106541&rev=22
http://sunsolve.sun.com/pub-cgi/findPatch.pl?patchId=106942&rev=26
http://sunsolve.sun.com/pub-cgi/findPatch.pl?patchId=106949&rev=03
Solaris 8:
http://sunsolve.sun.com/pub-cgi/findPatch.pl?patchId=108827&rev=24
http://sunsolve.sun.com/pub-cgi/findPatch.pl?patchId=108993&rev=16
http://sunsolve.sun.com/pub-cgi/findPatch.pl?patchId=109152&rev=02
Solaris 9:
http://sunsolve.sun.com/pub-cgi/findPatch.pl?patchId=112874&rev=01
http://sunsolve.sun.com/pub-cgi/findPatch.pl?patchId=112922&rev=02
http://sunsolve.sun.com/pub-cgi/findPatch.pl?patchId=113319&rev=10
http://sunsolve.sun.com/pub-cgi/findPatch.pl?patchId=114569&rev=02
http://sunsolve.sun.com/pub-cgi/findPatch.pl?patchId=114571&rev=01
-- x86 Platform --
Solaris 2.6:
http://sunsolve.sun.com/pub-cgi/findPatch.pl?patchId=105211&rev=49
http://sunsolve.sun.com/pub-cgi/findPatch.pl?patchId=105402&rev=43
Solaris 7:
http://sunsolve.sun.com/pub-cgi/findPatch.pl?patchId=106542&rev=22
http://sunsolve.sun.com/pub-cgi/findPatch.pl?patchId=106943&rev=26
Solaris 8:
http://sunsolve.sun.com/pub-cgi/findPatch.pl?patchId=108828&rev=25
http://sunsolve.sun.com/pub-cgi/findPatch.pl?patchId=108994&rev=16
http://sunsolve.sun.com/pub-cgi/findPatch.pl?patchId=114617&rev=01
Solaris 9:
http://sunsolve.sun.com/pub-cgi/findPatch.pl?patchId=113719&rev=03
http://sunsolve.sun.com/pub-cgi/findPatch.pl?patchId=114570&rev=01
http://sunsolve.sun.com/pub-cgi/findPatch.pl?patchId=114715&rev=01
ORIGINAL ADVISORY:
http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert%2F55420&zone_32=category%3Asecurity
----------------------------------------------------------------------
Secunia recommends that you verify all advisories you receive, by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.
Contact details:
Web : http://www.secunia.com/
E-mail : supportsecunia.com
Tel : +44 (0) 20 7016 2693
Fax : +44 (0) 20 7637 0419
----------------------------------------------------------------------
Unsubscribe: Secunia Security Advisories
----------------------------------------------------------------------
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]