CVE-2012-0100

Unspecified vulnerability in Oracle Solaris 9, 10, and 11 Express allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Kerberos.

CVSS v2.0 6.8 MEDIUM

6.8^/10

CVSS v2.0 : MEDIUM

Vector : AV:L/AC:L/Au:S/C:C/I:C/A:C

Exploitability : 3.1 / Impact : 10.0

Access Vector LOCAL

Access Complexity LOW

Authentication SINGLE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References

Link	Resource
http://osvdb.org/78421
http://secunia.com/advisories/48308
http://www.oracle.com/technetwork/topics/security/cpujan2012-366304.html	Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/72496

Configurations

Configuration 1 (hide)

OR	cpe:2.3:o:sun:sunos:5.9:::::::*
	cpe:2.3:o:sun:sunos:5.10:::::::*
	cpe:2.3:o:sun:sunos:5.11::express:::::

History

No history.

Information

Published : 2012-01-18 22:55

Updated : 2024-02-28 11:41

NVD link : CVE-2012-0100

Mitre link : CVE-2012-0100

CVE.ORG link : CVE-2012-0100

JSON object : View

Products Affected

sun

sunos

CWE

NVD-CWE-noinfo

{"id": "CVE-2012-0100", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 6.8, "accessVector": "LOCAL", "vectorString": "AV:L/AC:L/Au:S/C:C/I:C/A:C", "authentication": "SINGLE", "integrityImpact": "COMPLETE", "accessComplexity": "LOW", "availabilityImpact": "COMPLETE", "confidentialityImpact": "COMPLETE"}, "acInsufInfo": false, "impactScore": 10.0, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 3.1, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2012-01-18T22:55:05.930", "references": [{"url": "http://osvdb.org/78421", "source": "secalert_us@oracle.com"}, {"url": "http://secunia.com/advisories/48308", "source": "secalert_us@oracle.com"}, {"url": "http://www.oracle.com/technetwork/topics/security/cpujan2012-366304.html", "tags": ["Vendor Advisory"], "source": "secalert_us@oracle.com"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/72496", "source": "secalert_us@oracle.com"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-noinfo"}]}], "descriptions": [{"lang": "en", "value": "Unspecified vulnerability in Oracle Solaris 9, 10, and 11 Express allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Kerberos."}, {"lang": "es", "value": "Vulnerabilidad no especificada en Oracle Solaris v9, v10, v11 y Express permite a usuarios locales afectar a la confidencialidad, integridad y disponibilidad de los servicios a trav\u00e9s de vectores desconocidos relacionados con Kerberos."}], "lastModified": "2018-01-06T02:29:27.537", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:sun:sunos:5.9:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A1E585DC-FC74-4BB0-96B7-C00B6DB610DF"}, {"criteria": "cpe:2.3:o:sun:sunos:5.10:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E75493D0-F060-4CBA-8AB0-C4FE8B2A8C9B"}, {"criteria": "cpe:2.3:o:sun:sunos:5.11:*:express:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "48FF14E0-E332-4BD4-827B-D5D13509FBEE"}], "operator": "OR"}]}], "sourceIdentifier": "secalert_us@oracle.com"}