Vulnerabilities > CVE-2001-1414 - Unspecified vulnerability in SUN Solaris and Sunos

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

low complexity

sun

NVD

Published: 2001-10-09

Updated: 2018-10-30

Summary

The Basic Security Module (BSM) for Solaris 2.5.1, 2.6, 7, and 8 does not log anonymous FTP access, which allows remote attackers to hide their activities, possibly when certain BSM audit files are not present under the FTP root.

Vulnerable Configurations

Part	Description	Count
OS	Sun SUN Solaris 2.5.1 SUN Solaris 2.6 SUN Solaris 7.0 SUN Solaris 8.0 SUN Sunos - SUN Sunos 5.5.1 SUN Sunos 5.7 SUN Sunos 5.8	8

References

http://sunsolve.sun.com/search/document.do?assetkey=1-26-40521-1
http://www.securityfocus.com/bid/7396
https://exchange.xforce.ibmcloud.com/vulnerabilities/11841