Solaris Multiple Bugs Let Remote Users Access and Modify Data and Deny Service and Local Users Gain Elevated Privileges - SecurityTracker

Home | View Topics | Search | Contact Us |

SecurityTracker
Archives

Category: OS (UNIX) > Solaris

Vendors: Oracle, Sun

Solaris Multiple Bugs Let Remote Users Access and Modify Data and Deny Service and Local Users Gain Elevated Privileges

SecurityTracker Alert ID: 1027274

SecurityTracker URL: http://securitytracker.com/id/1027274

CVE Reference: CVE-2011-2699, CVE-2012-0563, CVE-2012-1687, CVE-2012-1750, CVE-2012-1752, CVE-2012-1765, CVE-2012-3112, CVE-2012-3120, CVE-2012-3121, CVE-2012-3122, CVE-2012-3123, CVE-2012-3124, CVE-2012-3125, CVE-2012-3126, CVE-2012-3127, CVE-2012-3129, CVE-2012-3130, CVE-2012-3131 (Links to External Site)

Date: Jul 18 2012

Impact: Denial of service via network, Disclosure of system information, Disclosure of user information, Modification of system information, Modification of user information, Root access via local system

Fix Available: Yes Vendor Confirmed: Yes

Version(s): 8, 9, 10, 11

Description: Multiple vulnerabilities were reported in Solaris. A local user can obtain elevated privileges on the target system. A remote user can cause denial of service conditions. A remote user can partially access and modify data on the target system.

A local user can exploit a flaw in the Solaris Cluster component to gain elevated privileges [CVE-2012-3126].

A remote user can exploit a flaw in the TCP/IP stack to cause denial of service conditions [CVE-2012-3120, CVE-2012-3125].

A remote user can exploit a flaw in the IPv6 implementation to partially modify data on the target system [CVE-2011-2699].

A remote user can cause partial denial of service conditions. The in.tnamed(1M) component [CVE-2012-3121] and Kernel/KSSL component [CVE-2012-3124] is affected.

A remote user can exploit a flaw in the Solaris Management Console to partially modify data [CVE-2012-3112].

A remote user can exploit a flaw in the Apache HTTP Server component to partially access data [CVE-2012-3123].

A remote user can exploit a flaw in the SCTP(7P) component to cause denial of service conditions [CVE-2012-3127].

A remote user can exploit a flaw in the Gnome PDF viewer to partially access and modify data and cause partial denial of service conditions [CVE-2012-3129].

A remote user can exploit a flaw in pkg.depotd(1M) to partially modify data [CVE-2012-3130].

A remote user can exploit a flaw in Network/NFS to partially access data [CVE-2012-3131].

A local user can exploit a flaw in the Kernel/NFS component to cause denial of service conditions [CVE-2012-1752].

A local user can exploit a flaw in the Branded Zone component to modify data [CVE-2012-1765].

A local user can exploit a flaw in sort(1) to partially access and modify data [CVE-2012-3122].

A local user can exploit a flaw in the Logical Domains (LDOM) component to partially modify data or cause denial of service conditions [CVE-2012-1687].

A local user can exploit a flaw in the mailx(1) to partially access and modify data and cause partial denial of service conditions [CVE-2012-1750].

A local user can exploit a flaw in Kerberos/klist to cause partial denial of service [CVE-2012-0563].

The following researchers reported these and other Oracle vulnerabilities:

Alexander Kornbrust of Red Database Security; Deniz Cevik of Biznet; Dennis Yurichev; Enrico Milanese of Emaze Networks S.p.A; Esteban Martinez Fayo of Application Security, Inc.; Francis Provencher via Secunia SVCRP; Jens Elkner; Joe Moore; Martin Carpenter of Citco; Mike Gerdts formerly of GE; Paul Harrington of NGS Secure; Paul Ritchie of NGS Secure; Sami Piiroinen and Juho Ranta of Louhi Security Oy; Stephen Kost of Integrigy; Steven Seeley of Corelan Team; and Will Dormann of CERT/CC.

Impact: A remote user can cause denial of service conditions.

A local user can obtain elevated privileges on the target system.

A remote user can partially access and modify data on the target system.

Solution: The vendor has issued a fix, described in their July 2012 Critical Patch Update advisory.

The vendor's advisory is available at:

http://www.oracle.com/technetwork/topics/security/cpujul2012-392727.html

Vendor URL: www.oracle.com/technetwork/topics/security/cpujul2012-392727.html (Links to External Site)

Cause: Not specified

Message History: None.

Source Message Contents


[Original Message Not Available for Viewing]

Go to the Top of This SecurityTracker Archive Page

Home | View Topics | Search | Contact Us
This web site uses cookies for web analytics. Learn More
Copyright 2019, SecurityGlobal.net LLC