Vulnerabilities > CVE-2004-1358 - Unspecified vulnerability in SUN Solaris 9.0
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
PARTIAL Availability impact
NONE Summary
The patches (1) 114332-08 and (2) 114929-06 for Sun Solaris 9 disable the auditing functionality of the Basic Security Module (BSM), which allows attackers to avoid having their activity logged.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| OS | 2 |
Oval
| accepted | 2005-06-01T03:30:00.000-04:00 | ||||
| class | vulnerability | ||||
| contributors |
| ||||
| description | The patches (1) 114332-08 and (2) 114929-06 for Sun Solaris 9 disable the auditing functionality of the Basic Security Module (BSM), which allows attackers to avoid having their activity logged. | ||||
| family | unix | ||||
| id | oval:org.mitre.oval:def:3567 | ||||
| status | accepted | ||||
| submitted | 2005-04-13T12:00:00.000-04:00 | ||||
| title | Patches Disable Basic Security Module Auditing Functionality | ||||
| version | 35 |
References
- http://sunsolve.sun.com/search/document.do?assetkey=1-26-57478-1&searchclause=%22category:security%22%20%20114332-08
- http://www.auscert.org.au/render.html?it=3788
- http://www.ciac.org/ciac/bulletins/o-099.shtml
- http://www.securityfocus.com/bid/9852
- https://exchange.xforce.ibmcloud.com/vulnerabilities/14918
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A3567