Sun Solaris Kernel Covert Channel Creation Security Bypass Vulnerability
BID:30880
Info
Sun Solaris Kernel Covert Channel Creation Security Bypass Vulnerability
| Bugtraq ID: | 30880 |
| Class: | Unknown |
| CVE: |
CVE-2008-3875 |
| Remote: | No |
| Local: | Yes |
| Published: | Aug 28 2008 12:00AM |
| Updated: | May 07 2015 05:24PM |
| Credit: | Sun Microsystems |
| Vulnerable: |
Sun Solaris 9_x86 Sun Solaris 9_sparc Sun Solaris 8_x86 Sun Solaris 8_sparc Sun Solaris 10_x86 Sun Solaris 10_sparc Sun OpenSolaris build snv_89 Sun OpenSolaris build snv_88 Sun OpenSolaris build snv_87 Sun OpenSolaris build snv_85 Sun OpenSolaris build snv_68 Sun OpenSolaris build snv_67 Sun OpenSolaris build snv_64 Sun OpenSolaris build snv_59 Sun OpenSolaris build snv_39 Sun OpenSolaris build snv_36 Sun OpenSolaris build snv_22 Sun OpenSolaris build snv_19 Sun OpenSolaris build snv_13 Sun OpenSolaris build snv_02 Sun OpenSolaris build snv_01 Sun OpenSolaris 0 |
| Not Vulnerable: |
Sun OpenSolaris build snv_90 |
Discussion
Sun Solaris Kernel Covert Channel Creation Security Bypass Vulnerability
The Sun Solaris kernel is prone to a security-bypass vulnerability that allows two processes to establish a covert communication channel.
An attacker can exploit this issue to bypass certain security policies.
The Sun Solaris kernel is prone to a security-bypass vulnerability that allows two processes to establish a covert communication channel.
An attacker can exploit this issue to bypass certain security policies.
Exploit / POC
Sun Solaris Kernel Covert Channel Creation Security Bypass Vulnerability
Currently we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Currently we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution / Fix
Sun Solaris Kernel Covert Channel Creation Security Bypass Vulnerability
Solution:
The vendor has released updates. Please see the references for more information.
Sun Solaris 10_sparc
Sun Solaris 9_x86
Sun Solaris 10_x86
Sun Solaris 8_x86
Sun Solaris 8_sparc
Solution:
The vendor has released updates. Please see the references for more information.
Sun Solaris 10_sparc
-
Sun 137111-05
SPARC
http://sunsolve.sun.com/search/document.do?assetkey=1-21-137111-05-1
Sun Solaris 9_x86
-
Sun 122301-30
x86
http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21 -122301-30-1
Sun Solaris 10_x86
-
Sun 137112-05
x86
http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21 -137112-05-1
Sun Solaris 8_x86
-
Sun 117351-56
x86
http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21 -117351-56-1
Sun Solaris 8_sparc
-
Sun 117350-56
SPARC
http://sunsolve.sun.com/search/document.do?assetkey=1-21-117350-56-1
References
Sun Solaris Kernel Covert Channel Creation Security Bypass Vulnerability
References:
References:
- Solaris Homepage (Sun Microsystems)
- Sun Alert 240706 Covert Channel Security Vulnerability in the Solaris Kernel (Sun Microsystems)