CVE-2008-1115

Unspecified vulnerability in Sun Solaris 8 directory functions allows local users to cause a denial of service (panic) via an unspecified sequence of system calls or commands.

CVSS v2.0 4.9 MEDIUM

4.9^/10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:L/AC:L/Au:N/C:N/I:N/A:C

Exploitability : 3.9 / Impact : 6.9

Access Vector LOCAL

Access Complexity LOW

Authentication NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact COMPLETE

References

Link	Resource
http://secunia.com/advisories/29217
http://sunsolve.sun.com/search/document.do?assetkey=1-66-200163-1	Patch
http://www.securityfocus.com/bid/28069
http://www.vupen.com/english/advisories/2008/0644/references
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5485

Configurations

Configuration 1 (hide)

OR	cpe:2.3:o:sun:solaris:8::sparc:::::
	cpe:2.3:o:sun:solaris:8::x86:::::

History

No history.

Information

Published : 2008-03-03 18:44

Updated : 2024-02-28 11:01

NVD link : CVE-2008-1115

Mitre link : CVE-2008-1115

CVE.ORG link : CVE-2008-1115

JSON object : View

Products Affected

sun

solaris

CWE

CWE-78

Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

NVD-CWE-noinfo

4.9 /10