CVE-2005-4701

Unspecified vulnerability in Process File System (procfs) in Sun Solaris 10 allows local users to obtain sensitive information such as process working directories via unknown attack vectors, possibly pwdx.

CVSS v2.0 2.1 LOW

2.1^/10

CVSS v2.0 : LOW

Vector : AV:L/AC:L/Au:N/C:P/I:N/A:N

Exploitability : 3.9 / Impact : 2.9

Access Vector LOCAL

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact NONE

Availability Impact NONE

References

Link	Resource
http://securitytracker.com/id?1015053	Patch
http://sunsolve.sun.com/search/document.do?assetkey=1-26-101949-1	Patch
http://www.osvdb.org/19976	Patch
http://www.vupen.com/english/advisories/2005/2075
http://securitytracker.com/id?1015053	Patch
http://sunsolve.sun.com/search/document.do?assetkey=1-26-101949-1	Patch
http://www.osvdb.org/19976	Patch
http://www.vupen.com/english/advisories/2005/2075

Configurations

Configuration 1 (hide)

OR	cpe:2.3:o:sun:solaris:10.0::sparc:::::
	cpe:2.3:o:sun:solaris:10.0::x86:::::

History

21 Nov 2024, 00:04

Type	Values Removed	Values Added
References	~~() http://securitytracker.com/id?1015053 - Patch~~	() http://securitytracker.com/id?1015053 - Patch
References	~~() http://sunsolve.sun.com/search/document.do?assetkey=1-26-101949-1 - Patch~~	() http://sunsolve.sun.com/search/document.do?assetkey=1-26-101949-1 - Patch
References	~~() http://www.osvdb.org/19976 - Patch~~	() http://www.osvdb.org/19976 - Patch
References	~~() http://www.vupen.com/english/advisories/2005/2075 -~~	() http://www.vupen.com/english/advisories/2005/2075 -

Information

Published : 2005-12-31 05:00

Updated : 2024-11-21 00:04

NVD link : CVE-2005-4701

Mitre link : CVE-2005-4701

CVE.ORG link : CVE-2005-4701

JSON object : View

Products Affected

sun

solaris

CWE

NVD-CWE-Other

{"id": "CVE-2005-4701", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 2.1, "accessVector": "LOCAL", "vectorString": "AV:L/AC:L/Au:N/C:P/I:N/A:N", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "NONE", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "LOW", "obtainAllPrivilege": false, "exploitabilityScore": 3.9, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2005-12-31T05:00:00.000", "references": [{"url": "http://securitytracker.com/id?1015053", "tags": ["Patch"], "source": "cve@mitre.org"}, {"url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-101949-1", "tags": ["Patch"], "source": "cve@mitre.org"}, {"url": "http://www.osvdb.org/19976", "tags": ["Patch"], "source": "cve@mitre.org"}, {"url": "http://www.vupen.com/english/advisories/2005/2075", "source": "cve@mitre.org"}, {"url": "http://securitytracker.com/id?1015053", "tags": ["Patch"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-101949-1", "tags": ["Patch"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.osvdb.org/19976", "tags": ["Patch"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.vupen.com/english/advisories/2005/2075", "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-Other"}]}], "descriptions": [{"lang": "en", "value": "Unspecified vulnerability in Process File System (procfs) in Sun Solaris 10 allows local users to obtain sensitive information such as process working directories via unknown attack vectors, possibly pwdx."}], "lastModified": "2024-11-21T00:04:58.080", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:sun:solaris:10.0:*:sparc:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7BF232A9-9E0A-481E-918D-65FC82EF36D8"}, {"criteria": "cpe:2.3:o:sun:solaris:10.0:*:x86:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0C0C3793-E011-4915-8F86-CE622A2D37D1"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}