CVE-2008-0242

Unspecified vulnerability in libdevinfo in Sun Solaris 10 allows local users to access files and gain privileges via unknown vectors, related to login device permissions.

CVSS v2.0 7.2 HIGH

7.2^/10

CVSS v2.0 : HIGH

Vector : AV:L/AC:L/Au:N/C:C/I:C/A:C

Exploitability : 3.9 / Impact : 10.0

Access Vector LOCAL

Access Complexity LOW

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References

Link	Resource
http://secunia.com/advisories/28493
http://sunsolve.sun.com/search/document.do?assetkey=1-26-103165-1
http://sunsolve.sun.com/search/document.do?assetkey=1-66-200641-1
http://www.securityfocus.com/bid/27253
http://www.securitytracker.com/id?1019187
http://www.vupen.com/english/advisories/2008/0131
https://exchange.xforce.ibmcloud.com/vulnerabilities/39629
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5211

Configurations

Configuration 1 (hide)

OR	cpe:2.3:o:sun:solaris:10.0::sparc:::::
	cpe:2.3:o:sun:solaris:10.0::x86:::::

History

No history.

Information

Published : 2008-01-12 02:46

Updated : 2024-02-28 11:01

NVD link : CVE-2008-0242

Mitre link : CVE-2008-0242

CVE.ORG link : CVE-2008-0242

JSON object : View

Products Affected

sun

solaris

CWE

NVD-CWE-noinfo

{"id": "CVE-2008-0242", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 7.2, "accessVector": "LOCAL", "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C", "authentication": "NONE", "integrityImpact": "COMPLETE", "accessComplexity": "LOW", "availabilityImpact": "COMPLETE", "confidentialityImpact": "COMPLETE"}, "acInsufInfo": false, "impactScore": 10.0, "baseSeverity": "HIGH", "obtainAllPrivilege": true, "exploitabilityScore": 3.9, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2008-01-12T02:46:00.000", "references": [{"url": "http://secunia.com/advisories/28493", "source": "cve@mitre.org"}, {"url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-103165-1", "source": "cve@mitre.org"}, {"url": "http://sunsolve.sun.com/search/document.do?assetkey=1-66-200641-1", "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/bid/27253", "source": "cve@mitre.org"}, {"url": "http://www.securitytracker.com/id?1019187", "source": "cve@mitre.org"}, {"url": "http://www.vupen.com/english/advisories/2008/0131", "source": "cve@mitre.org"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/39629", "source": "cve@mitre.org"}, {"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5211", "source": "cve@mitre.org"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-noinfo"}]}], "descriptions": [{"lang": "en", "value": "Unspecified vulnerability in libdevinfo in Sun Solaris 10 allows local users to access files and gain privileges via unknown vectors, related to login device permissions."}, {"lang": "es", "value": "Vulnerabilidad no especificada en libdevinfo de Sun Solaris 10, permite que usuario locales puedan acceder a ficheros y que obtengan privilegios, usando vectores desconocidos, relacionados con los permisos del dispositivo de login."}], "lastModified": "2017-09-29T01:30:11.050", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:sun:solaris:10.0:*:sparc:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7BF232A9-9E0A-481E-918D-65FC82EF36D8"}, {"criteria": "cpe:2.3:o:sun:solaris:10.0:*:x86:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0C0C3793-E011-4915-8F86-CE622A2D37D1"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}