Sun Solaris Tip Local Privilege Escalation Vulnerability
BID:22190
Info
Sun Solaris Tip Local Privilege Escalation Vulnerability
| Bugtraq ID: | 22190 |
| Class: | Unknown |
| CVE: |
CVE-2007-0470 |
| Remote: | No |
| Local: | Yes |
| Published: | Jan 23 2007 12:00AM |
| Updated: | May 12 2015 07:35PM |
| Credit: | The vendor disclosed this issue. |
| Vulnerable: |
Sun Solaris 9_x86 Sun Solaris 9_sparc Sun Solaris 8_x86 Sun Solaris 8_sparc Sun Solaris 10_x86 Sun Solaris 10_sparc Avaya Interactive Response 1.3 Avaya Interactive Response 2.0 Avaya CMS Server 13.0 Avaya CMS Server 12.0 Avaya CMS Server 11.0 Avaya CMS Server 9.0 Avaya CMS Server 13.1 |
| Not Vulnerable: | |
Discussion
Sun Solaris Tip Local Privilege Escalation Vulnerability
Sun Solaris is prone to a local privilege-escalation vulnerability.
Successfully exploiting this issue allows local users to execute arbitrary machine code with UUCP privileges (UID 5). This may aid them in further attacks.
Sun Solaris is prone to a local privilege-escalation vulnerability.
Successfully exploiting this issue allows local users to execute arbitrary machine code with UUCP privileges (UID 5). This may aid them in further attacks.
Exploit / POC
Sun Solaris Tip Local Privilege Escalation Vulnerability
Currently we are not aware of any exploits for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Currently we are not aware of any exploits for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution / Fix
References
Sun Solaris Tip Local Privilege Escalation Vulnerability
References:
References:
- Sun Alert ID: 102773 (Sun)
- Sun Solaris Home Page (Sun Microsystems)
- ASA-2007-042 - Security Vulnerabilities in the tip(1) Command May Allow Executio (Avaya)