Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Published: 2009-07-01
Updated: 2024-01-26
Summary
The Virtual Network Terminal Server daemon (vntsd) for Logical Domains (aka LDoms) in Sun Solaris 10, and OpenSolaris snv_41 through snv_108, on SPARC platforms does not check authorization for guest console access, which allows local control-domain users to gain guest-domain privileges via unknown vectors.
Vulnerable Configurations
| Part | Description | Count |
| OS | Oracle | 2 |
Common Weakness Enumeration (CWE)
Nessus
| NASL family | Solaris Local Security Checks |
| NASL id | SOLARIS10_141778.NASL |
| description | SunOS 5.10: vntsd patch. Date this patch was last updated by Sun : Jun/25/09 |
| last seen | 2018-09-01 |
| modified | 2018-08-13 |
| plugin id | 39532 |
| published | 2009-06-26 |
| reporter | Tenable |
| source | https://www.tenable.com/plugins/index.php?view=single&id=39532 |
| title | Solaris 10 (sparc) : 141778-02 |
| code | #%NASL_MIN_LEVEL 80502
# @DEPRECATED@
#
# This script has been deprecated as the associated patch is not
# currently a recommended security fix.
#
# Disabled on 2011/09/17.
#
# (C) Tenable Network Security, Inc.
#
#
if ( ! defined_func("bn_random") ) exit(0);
include("compat.inc");
if(description)
{
script_id(39532);
script_version("1.13");
script_name(english: "Solaris 10 (sparc) : 141778-02");
script_cve_id("CVE-2009-2282");
script_set_attribute(attribute: "synopsis", value:
"The remote host is missing Sun Security Patch number 141778-02");
script_set_attribute(attribute: "description", value:
'SunOS 5.10: vntsd patch.
Date this patch was last updated by Sun : Jun/25/09');
script_set_attribute(attribute: "solution", value:
"You should install this patch for your system to be up-to-date.");
script_set_attribute(attribute: "see_also", value:
"https://getupdates.oracle.com/readme/141778-02");
script_set_cvss_base_vector("CVSS2#AV:L/AC:L/Au:N/C:P/I:P/A:P");
script_cwe_id(264);
script_set_attribute(attribute:"plugin_publication_date", value: "2009/06/26");
script_cvs_date("Date: 2019/10/25 13:36:25");
script_end_attributes();
script_summary(english: "Check for patch 141778-02");
script_category(ACT_GATHER_INFO);
script_copyright(english:"This script is Copyright (C) 2009-2019 Tenable Network Security, Inc.");
family["english"] = "Solaris Local Security Checks";
script_family(english:family["english"]);
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/Solaris/showrev");
exit(0);
}
# Deprecated.
exit(0, "The associated patch is not currently a recommended security fix.");
|