Solaris Has Multiple Flaws That Let Local Users Gain Root Privileges, Remote or Local Users Deny Service, and Remote or Local Users Partially Access and Modify Data - SecurityTracker

	Keep Track of the Latest Vulnerabilities with SecurityTracker!

Home | View Topics | Search | Contact Us |

SecurityTracker
Archives

Sign Up for Your FREE Weekly SecurityTracker E-mail Alert Summary

Instant Alerts

Buy our Premium Vulnerability Notification Service to receive customized, instant alerts

Put SecurityTracker Vulnerability Alerts on Your Web Site -- It's Free!

Become a Partner and License Our Database or Notification Service

Report a Bug

Report a vulnerability that you have found to SecurityTracker
bugs
@
securitytracker.com

Category: OS (UNIX) > Solaris

Vendors: Oracle, Sun

Solaris Has Multiple Flaws That Let Local Users Gain Root Privileges, Remote or Local Users Deny Service, and Remote or Local Users Partially Access and Modify Data

SecurityTracker Alert ID: 1025797

SecurityTracker URL: http://securitytracker.com/id/1025797

CVE Reference: CVE-2011-2245, CVE-2011-2249, CVE-2011-2258, CVE-2011-2259, CVE-2011-2285, CVE-2011-2287, CVE-2011-2289, CVE-2011-2290, CVE-2011-2291, CVE-2011-2293, CVE-2011-2294, CVE-2011-2295, CVE-2011-2296, CVE-2011-2297, CVE-2011-2298, CVE-2011-2299 (Links to External Site)

Date: Jul 19 2011

Impact: Denial of service via network, Root access via local system

Fix Available: Yes Vendor Confirmed: Yes

Version(s): 8, 9, 10, 11, Express

Description: Multiple vulnerabilities were reported in Solaris. A local user can obtain root privileges on the target system. A remote or local user can cause denial of service conditions. A remote or local user can partially access and modify data on the target system.

A remote user can send specially crafted data via SSH to partially access and modify data and cause partial denial of service conditions [CVE-2011-2245].

A remote user on the local network can trigger a flaw in the TCP/IP stack and cause denial of service conditions [CVE-2011-2249].

A local user can exploit a flaw in rksh to partially access and modify data and cause partial denial of service conditions [CVE-2011-2258].

A local user can trigger a flaw in UFS to cause denial of service conditions [CVE-2011-2259].

A local user can exploit a flaw in the Installer component to gain root privileges [CVE-2011-2285].

A remote user can send specially crafted data via TCP/IP to fingerd to cause denial of service conditions [CVE-2011-2287].

A local user can exploit a flaw in LiveUpgrade to partially modify data and cause partial denial of service conditions [CVE-2011-2289].

A local user can exploit a flaw in sockfs to cause denial of service conditions [CVE-2011-2290].

A local privileged user can exploit a flaw in Trusted Extensions to partially access data on the target system [CVE-2011-2291].

A local user can exploit a flaw in Zones to deny service [CVE-2011-2293].

A remote user can send specially crafted data via SSH to cause partial denial of service conditions [CVE-2011-2294].

A local user can exploit a USB driver flaw to cause denial of service conditions [CVE-2011-2295].

A local user can exploit a kernel/SCTP flaw to cause denial of service conditions [CVE-2011-2296].

A local user can cause denial of service conditions in the Oracle Solaris Cluster component [CVE-2011-2297].

A remote user can send specially crafted data via SSL to cause partial denial of service conditions [CVE-2011-2298].

A remote user can send specially crafted data via SSH to partially access and modify data and cause partial denial of service conditions [CVE-2011-2299]. Systems with Data Service for WebLogic Server are affected.

The following researchers reported these and other Oracle vulnerabilities:

Abdul-Aziz Hariri, reported through Secunia; Alexander Kornbrust of Red Database Security; Alexandr Polyakov of Digital Security; Brett Gervasoni of Sense of Security; CERT/CC; Dennis Yurichev; Esteban Martinez Fayo of Application Security, Inc.; Guy Pilosof of McAfee Security Research; Laszlo Toth; Michael Myngerbayev of McAfee Security Research; Monarch2020 of unsecurityresearch; Ofer Maor of Hacktics; Okan Basegmez of DORASEC Consulting; Paul M. Wright formerly of NGS Software; Scott Laurie of MWR InfoSecurity; Sow Ching Shiong, reported through Secunia; Steven Seeley of Corelan Team; Sumit Siddharth from 7safe; Tenable Network Security of TippingPoint's Zero Day Initiative; and Will Dormann of CERT/CC.

Impact: A local user can obtain root privileges on the target system.

A remote or local user can cause denial of service conditions.

A remote or local user can partially access and modify data on the target system.

Solution: The vendor has issued a fix, described in their July 2011 Critical Patch Update advisory.

The vendor's advisory is available at:

http://www.oracle.com/technetwork/topics/security/cpujuly2011-313328.html

Vendor URL: www.oracle.com/technetwork/topics/security/cpujuly2011-313328.html (Links to External Site)

Cause: Not specified

Underlying OS:

Message History: None.

Source Message Contents

Date: Tue, 19 Jul 2011 21:32:54 +0000
Subject: Oracle Sun Solaris


CVE-2011-2245
CVE-2011-2249
CVE-2011-2258
CVE-2011-2259
CVE-2011-2285
CVE-2011-2287
CVE-2011-2289
CVE-2011-2290
CVE-2011-2291
CVE-2011-2293
CVE-2011-2294
CVE-2011-2295
CVE-2011-2296
CVE-2011-2297
CVE-2011-2298
CVE-2011-2299

Go to the Top of This SecurityTracker Archive Page

Home | View Topics | Search | Contact Us
Copyright 2013, SecurityGlobal.net LLC