Detections
Analytics

Solaris 10 (x86) : 148028-03 (deprecated)

medium Nessus Plugin ID 64660

Language:

Synopsis

This plugin has been deprecated.

Description

Vulnerability in the Solaris component of Oracle and Sun Systems Products Suite (subcomponent: RBAC Configuration). Supported versions that are affected are 8, 9 and 10. Very difficult to exploit vulnerability requiring logon to Operating System plus additional, multiple logins to components. Successful attack of this vulnerability can escalate attacker privileges resulting in unauthorized Operating System takeover including arbitrary code execution.

Vulnerability in the Solaris component of Oracle and Sun Systems Products Suite (subcomponent: Utility/pax). Supported versions that are affected are 8, 9, 10 and 11. Difficult to exploit vulnerability requiring logon to Operating System. Successful attack of this vulnerability can result in unauthorized update, insert or delete access to some Solaris accessible data and ability to cause a partial denial of service (partial DOS) of Solaris.

This plugin has been deprecated and either replaced with individual 148028 patch-revision plugins, or deemed non-security related.

See Also

https://getupdates.oracle.com/readme/148028-03

Plugin Details

Severity: Medium

ID: 64660

File Name: solaris10_x86_148028.nasl

Version: 1.13

Type: local

Published: 2/18/2013

Updated: 1/14/2021

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 5.9

CVSS v2

Risk Factor: Medium

Base Score: 5.9

Vector: CVSS2#AV:L/AC:H/Au:M/C:C/I:C/A:C

Vulnerability Information

CPE: cpe:/o:sun:solaris

Required KB Items: Host/local_checks_enabled, Host/Solaris/showrev

Patch Publication Date: 2/6/2013

Reference Information

CVE: CVE-2013-0411, CVE-2013-0412