Vulnerabilities > CVE-2005-4796 - Local Arbitrary File Corruption vulnerability in Sun Solaris XView
Attack vector
LOCAL Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
PARTIAL Availability impact
PARTIAL Summary
Unspecified vulnerability in the XView library (libxview.so) in Solaris 2.5 to 10 allows local users to corrupt files via unknown vectors related to the handling of the clipboard selection while an XView application exits.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| OS | 14 |
Nessus
NASL family Solaris Local Security Checks NASL id SOLARIS7_107374.NASL description Openwindows 3.6.1: Xview Patch. Date this patch was last updated by Sun : Aug/02/05 last seen 2016-09-26 modified 2011-10-24 plugin id 13108 published 2004-07-12 reporter Tenable source https://www.tenable.com/plugins/index.php?view=single&id=13108 title Solaris 7 (sparc) : 107374-03 code #%NASL_MIN_LEVEL 999999 # @DEPRECATED@ # # This script has been deprecated as the associated patch is not # currently a recommended security fix. # # Disabled on 2011/10/24. # # # (C) Tenable Network Security, Inc. # # if ( ! defined_func("bn_random") ) exit(0); include("compat.inc"); if(description) { script_id(13108); script_version("1.23"); script_name(english: "Solaris 7 (sparc) : 107374-03"); script_cve_id("CVE-2005-4796"); script_set_attribute(attribute: "synopsis", value: "The remote host is missing Sun Security Patch number 107374-03"); script_set_attribute(attribute: "description", value: 'Openwindows 3.6.1: Xview Patch. Date this patch was last updated by Sun : Aug/02/05'); script_set_attribute(attribute: "solution", value: "You should install this patch for your system to be up-to-date."); script_set_attribute(attribute: "see_also", value: "http://download.oracle.com/sunalerts/1001316.1.html"); script_set_attribute(attribute: "cvss_vector", value: "CVSS2#AV:L/AC:L/Au:N/C:N/I:P/A:P"); script_set_attribute(attribute:"plugin_publication_date", value: "2004/07/12"); script_cvs_date("Date: 2018/08/13 14:32:38"); script_set_attribute(attribute:"vuln_publication_date", value: "2001/07/09"); script_end_attributes(); script_summary(english: "Check for patch 107374-03"); script_category(ACT_GATHER_INFO); script_copyright(english:"This script is Copyright (C) 2004-2018 Tenable Network Security, Inc."); family["english"] = "Solaris Local Security Checks"; script_family(english:family["english"]); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Solaris/showrev"); exit(0); } # Deprecated. exit(0, "The associated patch is not currently a recommended security fix."); include("solaris.inc"); e += solaris_check_patch(release:"5.7", arch:"sparc", patch:"107374-03", obsoleted_by:"", package:"SUNWolinc", version:"3.6.1,REV=1.98.08.13"); e += solaris_check_patch(release:"5.7", arch:"sparc", patch:"107374-03", obsoleted_by:"", package:"SUNWolrte", version:"3.6.1,REV=1.98.08.13"); e += solaris_check_patch(release:"5.7", arch:"sparc", patch:"107374-03", obsoleted_by:"", package:"SUNWolslb", version:"3.6.1,REV=1.98.08.13"); if ( e < 0 ) { if ( NASL_LEVEL < 3000 ) security_note(0); else security_note(port:0, extra:solaris_get_report()); exit(0); } exit(0, "Host is not affected");NASL family Solaris Local Security Checks NASL id SOLARIS9_112811.NASL description OpenWindows 3.7.0: Xview Patch. Date this patch was last updated by Sun : Aug/02/05 last seen 2020-06-01 modified 2020-06-02 plugin id 19458 published 2005-08-18 reporter This script is Copyright (C) 2005-2019 Tenable Network Security, Inc. source https://www.tenable.com/plugins/nessus/19458 title Solaris 9 (sparc) : 112811-02 code #%NASL_MIN_LEVEL 80502 # # (C) Tenable Network Security, Inc. # # The descriptive text in this plugin was # extracted from the Oracle SunOS Patch Updates. # include("compat.inc"); if (description) { script_id(19458); script_version("1.19"); script_cvs_date("Date: 2019/10/25 13:36:23"); script_cve_id("CVE-2005-4796"); script_name(english:"Solaris 9 (sparc) : 112811-02"); script_summary(english:"Check for patch 112811-02"); script_set_attribute( attribute:"synopsis", value:"The remote host is missing Sun Security Patch number 112811-02" ); script_set_attribute( attribute:"description", value: "OpenWindows 3.7.0: Xview Patch. Date this patch was last updated by Sun : Aug/02/05" ); script_set_attribute( attribute:"see_also", value:"http://download.oracle.com/sunalerts/1001316.1.html" ); script_set_attribute( attribute:"solution", value:"You should install this patch for your system to be up-to-date." ); script_set_cvss_base_vector("CVSS2#AV:L/AC:L/Au:N/C:N/I:P/A:P"); script_set_attribute(attribute:"plugin_type", value:"local"); script_set_attribute(attribute:"cpe", value:"cpe:/o:sun:solaris"); script_set_attribute(attribute:"patch_publication_date", value:"2005/08/02"); script_set_attribute(attribute:"plugin_publication_date", value:"2005/08/18"); script_end_attributes(); script_category(ACT_GATHER_INFO); script_copyright(english:"This script is Copyright (C) 2005-2019 Tenable Network Security, Inc."); script_family(english:"Solaris Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/local_checks_enabled", "Host/Solaris/showrev"); exit(0); } include("audit.inc"); include("global_settings.inc"); include("solaris.inc"); if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED); if (solaris_check_patch(release:"5.9", arch:"sparc", patch:"112811-02", obsoleted_by:"", package:"SUNWolrte", version:"3.7.0,REV=1.2001.10.12") < 0) flag++; if (flag) { if (report_verbosity > 0) security_note(port:0, extra:solaris_get_report()); else security_note(0); exit(0); } audit(AUDIT_HOST_NOT, "affected");NASL family Solaris Local Security Checks NASL id SOLARIS8_X86_111627.NASL description OpenWindows 3.6.2_x86: Xview Patch. Date this patch was last updated by Sun : Aug/02/05 last seen 2020-06-01 modified 2020-06-02 plugin id 13483 published 2004-07-12 reporter This script is Copyright (C) 2004-2019 Tenable Network Security, Inc. source https://www.tenable.com/plugins/nessus/13483 title Solaris 8 (x86) : 111627-03 code #%NASL_MIN_LEVEL 80502 # # (C) Tenable Network Security, Inc. # # The descriptive text in this plugin was # extracted from the Oracle SunOS Patch Updates. # include("compat.inc"); if (description) { script_id(13483); script_version("1.24"); script_cvs_date("Date: 2019/10/25 13:36:23"); script_cve_id("CVE-2005-4796"); script_name(english:"Solaris 8 (x86) : 111627-03"); script_summary(english:"Check for patch 111627-03"); script_set_attribute( attribute:"synopsis", value:"The remote host is missing Sun Security Patch number 111627-03" ); script_set_attribute( attribute:"description", value: "OpenWindows 3.6.2_x86: Xview Patch. Date this patch was last updated by Sun : Aug/02/05" ); script_set_attribute( attribute:"see_also", value:"http://download.oracle.com/sunalerts/1001316.1.html" ); script_set_attribute( attribute:"solution", value:"You should install this patch for your system to be up-to-date." ); script_set_cvss_base_vector("CVSS2#AV:L/AC:L/Au:N/C:N/I:P/A:P"); script_set_attribute(attribute:"plugin_type", value:"local"); script_set_attribute(attribute:"cpe", value:"cpe:/o:sun:solaris"); script_set_attribute(attribute:"patch_publication_date", value:"2005/08/02"); script_set_attribute(attribute:"plugin_publication_date", value:"2004/07/12"); script_end_attributes(); script_category(ACT_GATHER_INFO); script_copyright(english:"This script is Copyright (C) 2004-2019 Tenable Network Security, Inc."); script_family(english:"Solaris Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/local_checks_enabled", "Host/Solaris/showrev"); exit(0); } include("audit.inc"); include("global_settings.inc"); include("solaris.inc"); if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED); if (solaris_check_patch(release:"5.8_x86", arch:"i386", patch:"111627-03", obsoleted_by:"", package:"SUNWolslb", version:"3.6.20,REV=1.1999.12.03") < 0) flag++; if (solaris_check_patch(release:"5.8_x86", arch:"i386", patch:"111627-03", obsoleted_by:"", package:"SUNWolrte", version:"3.6.20,REV=1.1999.12.03") < 0) flag++; if (flag) { if (report_verbosity > 0) security_note(port:0, extra:solaris_get_report()); else security_note(0); exit(0); } audit(AUDIT_HOST_NOT, "affected");NASL family Solaris Local Security Checks NASL id SOLARIS10_119903.NASL description OpenWindows 3.7.3: Xview Patch. Date this patch was last updated by Sun : Aug/11/06 This plugin has been deprecated and either replaced with individual 119903 patch-revision plugins, or deemed non-security related. last seen 2019-02-21 modified 2018-07-30 plugin id 19368 published 2005-08-02 reporter Tenable source https://www.tenable.com/plugins/index.php?view=single&id=19368 title Solaris 10 (sparc) : 119903-02 (deprecated) code #%NASL_MIN_LEVEL 80502 # # (C) Tenable Network Security, Inc. # # @DEPRECATED@ # # Disabled on 2018/03/12. Deprecated and either replaced by # individual patch-revision plugins, or has been deemed a # non-security advisory. # include("compat.inc"); if (description) { script_id(19368); script_version("1.21"); script_cvs_date("Date: 2019/10/25 13:36:23"); script_cve_id("CVE-2005-4796"); script_name(english:"Solaris 10 (sparc) : 119903-02 (deprecated)"); script_summary(english:"Check for patch 119903-02"); script_set_attribute( attribute:"synopsis", value:"This plugin has been deprecated." ); script_set_attribute( attribute:"description", value: "OpenWindows 3.7.3: Xview Patch. Date this patch was last updated by Sun : Aug/11/06 This plugin has been deprecated and either replaced with individual 119903 patch-revision plugins, or deemed non-security related." ); script_set_attribute( attribute:"see_also", value:"https://getupdates.oracle.com/readme/119903-02" ); script_set_attribute( attribute:"solution", value:"n/a" ); script_set_cvss_base_vector("CVSS2#AV:L/AC:L/Au:N/C:N/I:P/A:P"); script_set_attribute(attribute:"plugin_type", value:"local"); script_set_attribute(attribute:"cpe", value:"cpe:/o:sun:solaris"); script_set_attribute(attribute:"patch_publication_date", value:"2006/08/11"); script_set_attribute(attribute:"plugin_publication_date", value:"2005/08/02"); script_end_attributes(); script_category(ACT_GATHER_INFO); script_copyright(english:"This script is Copyright (C) 2005-2019 Tenable Network Security, Inc."); script_family(english:"Solaris Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/local_checks_enabled", "Host/Solaris/showrev"); exit(0); } exit(0, "This plugin has been deprecated. Consult specific patch-revision plugins for patch 119903 instead.");NASL family Solaris Local Security Checks NASL id SOLARIS10_X86_119904.NASL description Openwindows 3.7.3_x86: Xview Patch. Date this patch was last updated by Sun : Aug/11/06 This plugin has been deprecated and either replaced with individual 119904 patch-revision plugins, or deemed non-security related. last seen 2019-02-21 modified 2018-07-30 plugin id 19371 published 2005-08-02 reporter Tenable source https://www.tenable.com/plugins/index.php?view=single&id=19371 title Solaris 10 (x86) : 119904-02 (deprecated) NASL family Solaris Local Security Checks NASL id SOLARIS8_111626.NASL description OpenWindows 3.6.2: Xview Patch. Date this patch was last updated by Sun : Aug/02/05 last seen 2020-06-01 modified 2020-06-02 plugin id 13380 published 2004-07-12 reporter This script is Copyright (C) 2004-2019 Tenable Network Security, Inc. source https://www.tenable.com/plugins/nessus/13380 title Solaris 8 (sparc) : 111626-04 NASL family Solaris Local Security Checks NASL id SOLARIS7_X86_107375.NASL description Openwindows 3.6.1_x86: Xview Patch. Date this patch was last updated by Sun : Aug/02/05 last seen 2016-09-26 modified 2011-10-24 plugin id 13213 published 2004-07-12 reporter Tenable source https://www.tenable.com/plugins/index.php?view=single&id=13213 title Solaris 7 (x86) : 107375-03 NASL family Solaris Local Security Checks NASL id SOLARIS9_X86_119902.NASL description Openwindows 3.7.0_x86: Xview Patch. Date this patch was last updated by Sun : Aug/02/05 last seen 2020-06-01 modified 2020-06-02 plugin id 19462 published 2005-08-18 reporter This script is Copyright (C) 2005-2019 Tenable Network Security, Inc. source https://www.tenable.com/plugins/nessus/19462 title Solaris 9 (x86) : 119902-01