SecurityTracker.com
    Home    |    View Topics    |    Search    |    Contact Us    |   

SecurityTracker
Archives


 


Category:   OS (UNIX)  >   printd Vendors:   Sun
Sun Solaris printd Lets Remote Users Delete Arbitrary Files
SecurityTracker Alert ID:  1014635
SecurityTracker URL:  http://securitytracker.com/id/1014635
CVE Reference:   CVE-2005-4797   (Links to External Site)
Updated:  Jun 8 2008
Original Entry Date:  Aug 9 2005
Impact:   Denial of service via local system, Denial of service via network, Modification of system information, Modification of user information
Fix Available:  Yes  Vendor Confirmed:  Yes  
Version(s): Solaris 7, 8, 9, and 10
Description:   A vulnerability was reported in Sun Solaris in printd. A remote user may be able to delete arbitrary files from the target system.

A local or remote user can exploit an unspecified flaw in the 'printd' daemon to remove arbitrary files on the target system.

Only systems that have the printer package "SUNWpcu" installed are affected.

Impact:   A local or remote user can delete arbitrary files on the target system.
Solution:   Sun has issued the following fixes.

SPARC Platform

* Solaris 7 with patch 107115-19 or later
* Solaris 8 with patch 109320-16 or later
* Solaris 9 with patch 113329-15 or later
* Solaris 10 with patch 120467-01 or later

x86 Platform

* Solaris 7 with patch 107116-19 or later
* Solaris 8 with patch 109321-16 or later
* Solaris 9 with patch 114980-16 or later
* Solaris 10 with patch 120468-01 or later

Vendor URL:  sunsolve.sun.com/search/document.do?assetkey=1-26-101842-1 (Links to External Site)
Cause:   Not specified

Message History:   None.


 Source Message Contents



[Original Message Not Available for Viewing]


Go to the Top of This SecurityTracker Archive Page





Home   |    View Topics   |    Search   |    Contact Us

This web site uses cookies for web analytics. Learn More

Copyright 2019, SecurityGlobal.net LLC