Vulnerability in the Solaris component of Oracle Sun Systems Products Suite (subcomponent: Remote Administration Daemon). The supported version that is affected is 11.3. Easily "exploitable" vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Solaris. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Solaris accessible data as well as unauthorized read access to a subset of Solaris accessible data and unauthorized ability to cause a partial denial of service (partial DOS) of Solaris. CVSS 3.0 Base Score 7.3 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L).
References
| Link | Resource |
|---|---|
| http://www.oracle.com/technetwork/security-advisory/cpuapr2017-3236618.html | Patch Vendor Advisory |
| http://www.securityfocus.com/bid/97788 | Third Party Advisory VDB Entry |
| http://www.securitytracker.com/id/1038292 | |
| http://www.oracle.com/technetwork/security-advisory/cpuapr2017-3236618.html | Patch Vendor Advisory |
| http://www.securityfocus.com/bid/97788 | Third Party Advisory VDB Entry |
| http://www.securitytracker.com/id/1038292 |
Configurations
History
21 Nov 2024, 03:25
| Type | Values Removed | Values Added |
|---|---|---|
| References | () http://www.oracle.com/technetwork/security-advisory/cpuapr2017-3236618.html - Patch, Vendor Advisory | |
| References | () http://www.securityfocus.com/bid/97788 - Third Party Advisory, VDB Entry | |
| References | () http://www.securitytracker.com/id/1038292 - |
Information
Published : 2017-04-24 19:59
Updated : 2024-11-21 03:25
NVD link : CVE-2017-3497
Mitre link : CVE-2017-3497
CVE.ORG link : CVE-2017-3497
JSON object : View
Products Affected
oracle
- solaris
CWE