Vulnerabilities > CVE-2008-3838 - Unspecified vulnerability in SUN Opensolaris
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN sun
nessus
Summary
Unspecified vulnerability in the NFS Remote Procedure Calls (RPC) zones implementation in Sun Solaris 10 and OpenSolaris before snv_88 allows local administrators of non-global zones to read and modify NFS traffic for arbitrary non-global zones, possibly leading to file modifications or a denial of service.
Vulnerable Configurations
Nessus
NASL family Solaris Local Security Checks NASL id SOLARIS10_138070.NASL description SunOS 5.10: nfssrv and rpcsec patch. Date this patch was last updated by Sun : Aug/21/08 last seen 2018-09-01 modified 2018-08-13 plugin id 34066 published 2008-09-03 reporter Tenable source https://www.tenable.com/plugins/index.php?view=single&id=34066 title Solaris 10 (sparc) : 138070-03 code #%NASL_MIN_LEVEL 80502 # @DEPRECATED@ # # This script has been deprecated as the associated patch is not # currently a recommended security fix. # # Disabled on 2011/09/17. # # (C) Tenable Network Security, Inc. # # if ( ! defined_func("bn_random") ) exit(0); include("compat.inc"); if(description) { script_id(34066); script_version("1.12"); script_name(english: "Solaris 10 (sparc) : 138070-03"); script_cve_id("CVE-2008-3838", "CVE-2008-3839"); script_set_attribute(attribute: "synopsis", value: "The remote host is missing Sun Security Patch number 138070-03"); script_set_attribute(attribute: "description", value: 'SunOS 5.10: nfssrv and rpcsec patch. Date this patch was last updated by Sun : Aug/21/08'); script_set_attribute(attribute: "solution", value: "You should install this patch for your system to be up-to-date."); script_set_attribute(attribute: "see_also", value: "https://getupdates.oracle.com/readme/138070-03"); script_set_cvss_base_vector("CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C"); script_cwe_id(20); script_set_attribute(attribute:"plugin_publication_date", value: "2008/09/03"); script_cvs_date("Date: 2019/10/25 13:36:24"); script_end_attributes(); script_summary(english: "Check for patch 138070-03"); script_category(ACT_GATHER_INFO); script_copyright(english:"This script is Copyright (C) 2008-2019 Tenable Network Security, Inc."); family["english"] = "Solaris Local Security Checks"; script_family(english:family["english"]); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Solaris/showrev"); exit(0); } # Deprecated. exit(0, "The associated patch is not currently a recommended security fix.");NASL family Solaris Local Security Checks NASL id SOLARIS10_X86_138071.NASL description SunOS 5.10_x86: nfssrv and rpcsec patch. Date this patch was last updated by Sun : Aug/20/08 last seen 2018-09-01 modified 2018-08-13 plugin id 34067 published 2008-09-03 reporter Tenable source https://www.tenable.com/plugins/index.php?view=single&id=34067 title Solaris 10 (x86) : 138071-03 code #%NASL_MIN_LEVEL 80502 # @DEPRECATED@ # # This script has been deprecated as the associated patch is not # currently a recommended security fix. # # Disabled on 2011/09/17. # # (C) Tenable Network Security, Inc. # # if ( ! defined_func("bn_random") ) exit(0); include("compat.inc"); if(description) { script_id(34067); script_version("1.13"); script_name(english: "Solaris 10 (x86) : 138071-03"); script_cve_id("CVE-2008-3838", "CVE-2008-3839"); script_set_attribute(attribute: "synopsis", value: "The remote host is missing Sun Security Patch number 138071-03"); script_set_attribute(attribute: "description", value: 'SunOS 5.10_x86: nfssrv and rpcsec patch. Date this patch was last updated by Sun : Aug/20/08'); script_set_attribute(attribute: "solution", value: "You should install this patch for your system to be up-to-date."); script_set_attribute(attribute: "see_also", value: "https://getupdates.oracle.com/readme/138071-03"); script_set_cvss_base_vector("CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C"); script_cwe_id(20); script_set_attribute(attribute:"plugin_publication_date", value: "2008/09/03"); script_cvs_date("Date: 2019/10/25 13:36:24"); script_end_attributes(); script_summary(english: "Check for patch 138071-03"); script_category(ACT_GATHER_INFO); script_copyright(english:"This script is Copyright (C) 2008-2019 Tenable Network Security, Inc."); family["english"] = "Solaris Local Security Checks"; script_family(english:family["english"]); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Solaris/showrev"); exit(0); } # Deprecated. exit(0, "The associated patch is not currently a recommended security fix.");
References
- http://secunia.com/advisories/31622
- http://secunia.com/advisories/31622
- http://sunsolve.sun.com/search/document.do?assetkey=1-26-240866-1
- http://sunsolve.sun.com/search/document.do?assetkey=1-26-240866-1
- http://www.securityfocus.com/bid/30853
- http://www.securityfocus.com/bid/30853
- http://www.securitytracker.com/id?1020752
- http://www.securitytracker.com/id?1020752
- http://www.vupen.com/english/advisories/2008/2441
- http://www.vupen.com/english/advisories/2008/2441
- https://exchange.xforce.ibmcloud.com/vulnerabilities/44696
- https://exchange.xforce.ibmcloud.com/vulnerabilities/44696