Sun Cluster SunPlex Manager Unauthorized File Access Vulnerability
BID:17313
Info
Sun Cluster SunPlex Manager Unauthorized File Access Vulnerability
| Bugtraq ID: | 17313 |
| Class: | Access Validation Error |
| CVE: |
CVE-2006-1601 |
| Remote: | No |
| Local: | Yes |
| Published: | Mar 29 2006 12:00AM |
| Updated: | Jun 28 2007 12:38AM |
| Credit: | Reported by the vendor. |
| Vulnerable: |
Sun Solaris 9_x86 Sun Solaris 9 Sun Solaris 8_x86 Sun Solaris 8_sparc Sun Cluster 3.1 4/04 |
| Not Vulnerable: |
Sun Cluster 3.1 9/04 |
Discussion
Sun Cluster SunPlex Manager Unauthorized File Access Vulnerability
Sun Cluster is prone to a vulnerability that can allow local users to gain unauthorized access to files that may contain sensitive information.
An attacker may exploit this issue to gain access to sensitive information, which may aid in other attacks against a vulnerable computer.
This issue affects Sun Cluster 3.1 4/04 for Solaris 8 and 9.
Sun Cluster is prone to a vulnerability that can allow local users to gain unauthorized access to files that may contain sensitive information.
An attacker may exploit this issue to gain access to sensitive information, which may aid in other attacks against a vulnerable computer.
This issue affects Sun Cluster 3.1 4/04 for Solaris 8 and 9.
Exploit / POC
Sun Cluster SunPlex Manager Unauthorized File Access Vulnerability
An exploit is not required.
An exploit is not required.
Solution / Fix
Sun Cluster SunPlex Manager Unauthorized File Access Vulnerability
Solution:
The vendor has released an advisory with upgrades to address this issue. Please see the references for more information.
Solution:
The vendor has released an advisory with upgrades to address this issue. Please see the references for more information.
References
Sun Cluster SunPlex Manager Unauthorized File Access Vulnerability
References:
References:
- Sun Alert ID: 102278 (Sun)