Vulnerabilities > CVE-2006-2790 - Local Privilege Escalation vulnerability in SUN Storage Automated Diagnostic Environment 2.4
Attack vector
LOCAL Attack complexity
LOW Privileges required
NONE Confidentiality impact
COMPLETE Integrity impact
COMPLETE Availability impact
COMPLETE Summary
A package component in Sun Storage Automated Diagnostic Environment (StorADE) 2.4 uses world-writable permissions for certain critical files and directories, which allows local users to gain privileges. This vulnerability is addressed in the following product release: Sun, Storage Automated Diagnostic Environment, 2.4 (for Solaris 8, 9 and 10) with patch 117654-60 or later.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |