VRDA Feed : Provides information for vulnerability impact analysis

VRDA Feed by

Vulnerability Response Decision Assistance Feed : Information for vulnerability impact analysis

Vulnerability Analysis Result (Revision No : 1)

VRDA-090930-001

Security Vulnerabilities in Solaris Trusted Extensions Common Desktop Environment (CDE) may allow Privilege Escalation or Mandatory Access Control (MAC) Policy Violation

http://sunsolve.sun.com/search/document.do?assetkey=1-66-267488-1

Security Vulnerabilities in Solaris Trusted Extensions Common Desktop Environment (CDE) may allow an unprivileged local user to easily execute arbitrary commands with root privileges or to bypass Mandatory Access Control (MAC) policy.

About This Analysis Information

Analysis Information Provider:

JPCERT/CC

First Published:

2009-09-30

Source Information Category:

Advisory, Alert

Last Updated:

2009-09-30

Affected Product Tags

cpe:/o:sun:solaris:10 (Sun Solaris 10)

Vulnerability Analysis Results

[Information Source Reliability]^[?]

Low^[?]

Medium^[?]

High^[?]

[Impact Level]^[?]

Low^[?]

Low-Medium^[?]

Medium-High^[?]

High^[?]

[Access Required]^[?]

Physical^[?]

Local^[?]

Non-routed^[?]

Routed^[?]

[Authentication]^[?]

Privileged^[?]

Standard^[?]

Limited^[?]

None or Unnecessary^[?]

[User Interaction Required]^[?]

Complex^[?]

Simple^[?]

None^[?]

[Technical Difficulty]^[?]

High^[?]

Medium-High^[?]

Low-Medium^[?]

Low^[?]

[Availability of Remediation]^[?]

Official Patch^[?]

Official Workaround^[?]

Unofficial Patch^[?]

None^[?]

[Incident Activity]^[?]

None^[?]

Exploit or PoC^[?]

Activity Observed^[?]

Alternatives

References