Vulnerabilities > CVE-2005-4133 - Unspecified vulnerability in SUN Solaris 10.0

CVSS 2.1 - LOW

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

NONE

Availability impact

NONE

local

low complexity

sun

NVD

Published: 2005-12-09

Updated: 2011-03-08

Summary

Sun Update Connection in Sun Solaris 10, when configured to use a web proxy, allows local users to obtain the proxy authentication password via (1) an unspecified vector and (2) proxy log files.

Vulnerable Configurations

Part	Description	Count
OS	Sun SUN Solaris 10.0	2

References

http://secunia.com/advisories/17931
http://securitytracker.com/id?1015331
http://sunsolve.sun.com/searchproxy/document.do?assetkey=1-26-102090-1
http://www.securityfocus.com/bid/15772
http://www.vupen.com/english/advisories/2005/2803