Vulnerabilities > CVE-2009-2430 - Local Privilege Escalation vulnerability in SUN Opensolaris and Solaris

CVSS 4.6 - MEDIUM

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

local

low complexity

sun

nessus

NVD

Published: 2009-07-10

Updated: 2009-07-22

Summary

Unspecified vulnerability in auditconfig in Sun Solaris 8, 9, 10, and OpenSolaris snv_01 through snv_58, when Solaris Auditing is enabled, allows local users with an RBAC execution profile for auditconfig to gain privileges via unknown attack vectors.

Vulnerable Configurations

Part	Description	Count
OS	Sun SUN Opensolaris Snv_01 SUN Opensolaris Snv_02 SUN Opensolaris Snv_03 SUN Opensolaris Snv_04 SUN Opensolaris Snv_05 SUN Opensolaris Snv_06 SUN Opensolaris Snv_07 SUN Opensolaris Snv_08 SUN Opensolaris Snv_09 SUN Opensolaris Snv_10 SUN Opensolaris Snv_11 SUN Opensolaris Snv_12 SUN Opensolaris Snv_13 SUN Opensolaris Snv_14 SUN Opensolaris Snv_15 SUN Opensolaris Snv_16 SUN Opensolaris Snv_17 SUN Opensolaris Snv_18 SUN Opensolaris Snv_19 SUN Opensolaris Snv_20 SUN Opensolaris Snv_21 SUN Opensolaris Snv_22 SUN Opensolaris Snv_23 SUN Opensolaris Snv_24 SUN Opensolaris Snv_25 SUN Opensolaris Snv_26 SUN Opensolaris Snv_27 SUN Opensolaris Snv_28 SUN Opensolaris Snv_29 SUN Opensolaris Snv_30 SUN Opensolaris Snv_31 SUN Opensolaris Snv_32 SUN Opensolaris Snv_33 SUN Opensolaris Snv_34 SUN Opensolaris Snv_35 SUN Opensolaris Snv_36 SUN Opensolaris Snv_37 SUN Opensolaris Snv_38 SUN Opensolaris Snv_39 SUN Opensolaris Snv_40 SUN Opensolaris Snv_41 SUN Opensolaris Snv_42 SUN Opensolaris Snv_43 SUN Opensolaris Snv_44 SUN Opensolaris Snv_45 SUN Opensolaris Snv_46 SUN Opensolaris Snv_47 SUN Opensolaris Snv_48 SUN Opensolaris Snv_49 SUN Opensolaris Snv_50 SUN Opensolaris Snv_51 SUN Opensolaris Snv_52 SUN Opensolaris Snv_53 SUN Opensolaris Snv_54 SUN Opensolaris Snv_55 SUN Opensolaris Snv_56 SUN Opensolaris Snv_57 SUN Opensolaris Snv_58 SUN Solaris 8 SUN Solaris 9 SUN Solaris 10	122

Nessus

NASL family	Solaris Local Security Checks
NASL id	SOLARIS9_122300.NASL
description	SunOS 5.9: Kernel Patch. Date this patch was last updated by Sun : Nov/03/11
last seen	2020-06-01
modified	2020-06-02
plugin id	24858
published	2007-03-18
reporter	This script is Copyright (C) 2007-2019 Tenable Network Security, Inc.
source	https://www.tenable.com/plugins/nessus/24858
title	Solaris 9 (sparc) : 122300-61

NASL family	Solaris Local Security Checks
NASL id	SOLARIS8_109007.NASL
description	SunOS 5.8: at/atrm/batch/cron/inetd patch. Date this patch was last updated by Sun : Mar/25/09
last seen	2020-06-01
modified	2020-06-02
plugin id	13309
published	2004-07-12
reporter	This script is Copyright (C) 2004-2019 Tenable Network Security, Inc.
source	https://www.tenable.com/plugins/nessus/13309
title	Solaris 8 (sparc) : 109007-28

NASL family	Solaris Local Security Checks
NASL id	SOLARIS9_X86_122301.NASL
description	SunOS 5.9_x86: Kernel Patch. Date this patch was last updated by Sun : Nov/03/11
last seen	2020-06-01
modified	2020-06-02
plugin id	24861
published	2007-03-18
reporter	This script is Copyright (C) 2007-2019 Tenable Network Security, Inc.
source	https://www.tenable.com/plugins/nessus/24861
title	Solaris 9 (x86) : 122301-61

NASL family	Solaris Local Security Checks
NASL id	SOLARIS8_X86_109008.NASL
description	SunOS 5.8_x86: at/atrm/batch/cron/inetd pa. Date this patch was last updated by Sun : Mar/26/09
last seen	2020-06-01
modified	2020-06-02
plugin id	13419
published	2004-07-12
reporter	This script is Copyright (C) 2004-2019 Tenable Network Security, Inc.
source	https://www.tenable.com/plugins/nessus/13419
title	Solaris 8 (x86) : 109008-28

Summary

Vulnerable Configurations

Nessus

References