Vulnerabilities > CVE-2007-6505 - Configuration vulnerability in SUN Solaris 9
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
SINGLE Confidentiality impact
PARTIAL Integrity impact
NONE Availability impact
NONE Summary
Solaris 9, with Solaris Auditing enabled and certain patches for sshd installed, can generate audit records with an audit-ID of 0 even when the user logging into ssh is not root, which makes it easier for attackers to avoid detection and can make it more difficult to conduct forensics activities.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
OS | 2 |
Common Weakness Enumeration (CWE)
Nessus
NASL family Solaris Local Security Checks NASL id SOLARIS9_122300.NASL description SunOS 5.9: Kernel Patch. Date this patch was last updated by Sun : Nov/03/11 last seen 2020-06-01 modified 2020-06-02 plugin id 24858 published 2007-03-18 reporter This script is Copyright (C) 2007-2019 Tenable Network Security, Inc. source https://www.tenable.com/plugins/nessus/24858 title Solaris 9 (sparc) : 122300-61 NASL family Solaris Local Security Checks NASL id SOLARIS9_X86_122301.NASL description SunOS 5.9_x86: Kernel Patch. Date this patch was last updated by Sun : Nov/03/11 last seen 2020-06-01 modified 2020-06-02 plugin id 24861 published 2007-03-18 reporter This script is Copyright (C) 2007-2019 Tenable Network Security, Inc. source https://www.tenable.com/plugins/nessus/24861 title Solaris 9 (x86) : 122301-61
Oval
accepted | 2008-02-25T04:00:10.579-05:00 | ||||||||
class | vulnerability | ||||||||
contributors |
| ||||||||
definition_extensions |
| ||||||||
description | Solaris 9, with Solaris Auditing enabled and certain patches for sshd installed, can generate audit records with an audit-ID of 0 even when the user logging into ssh is not root, which makes it easier for attackers to avoid detection and can make it more difficult to conduct forensics activities. | ||||||||
family | unix | ||||||||
id | oval:org.mitre.oval:def:5282 | ||||||||
status | accepted | ||||||||
submitted | 2008-01-09T07:41:42.000-05:00 | ||||||||
title | Solaris 9 sshd(1M) Patches May Cause Incorrect Audit Data to be Logged | ||||||||
version | 36 |
References
- http://osvdb.org/44332
- http://sunsolve.sun.com/search/document.do?assetkey=1-26-103172-1
- http://sunsolve.sun.com/search/document.do?assetkey=1-66-201310-1
- https://exchange.xforce.ibmcloud.com/vulnerabilities/39185
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5282