Vulnerabilities > CVE-2009-3390 - Local Security vulnerability in OpenSolaris

047910
CVSS 7.2 - HIGH
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
COMPLETE
Integrity impact
COMPLETE
Availability impact
COMPLETE
local
low complexity
sun
nessus
NVD
Published: 2009-09-24
Updated: 2009-09-25

Summary

Multiple unspecified vulnerabilities in the (1) iscsiadm and (2) iscsitadm programs in Sun Solaris 10, and OpenSolaris snv_28 through snv_109, allow local users with certain RBAC execution profiles to gain privileges via unknown vectors related to the libima library.

Vulnerable Configurations

Part Description Count
OS
Sun
165

Nessus

NASL familySolaris Local Security Checks
NASL idSOLARIS10_119090.NASL
descriptionSunOS 5.10: Sun iSCSI Device Driver and Ut. Date this patch was last updated by Sun : Sep/09/09
last seen2018-09-01
modified2018-08-13
plugin id40924
published2009-09-10
reporterTenable
sourcehttps://www.tenable.com/plugins/index.php?view=single&id=40924
titleSolaris 10 (sparc) : 119090-33
code
#%NASL_MIN_LEVEL 80502

# @DEPRECATED@
#
# This script has been deprecated as the associated patch is not
# currently a recommended security fix.
#
# Disabled on 2011/09/17.

#
# (C) Tenable Network Security, Inc.
#
#

if ( ! defined_func("bn_random") ) exit(0);
include("compat.inc");

if(description)
{
 script_id(40924);
 script_version("1.17");

 script_name(english: "Solaris 10 (sparc) : 119090-33");
 script_cve_id("CVE-2009-3390");
 script_set_attribute(attribute: "synopsis", value:
"The remote host is missing Sun Security Patch number 119090-33");
 script_set_attribute(attribute: "description", value:
'SunOS 5.10: Sun iSCSI Device Driver and Ut.
Date this patch was last updated by Sun : Sep/09/09');
 script_set_attribute(attribute: "solution", value:
"You should install this patch for your system to be up-to-date.");
 script_set_attribute(attribute: "see_also", value:
"https://getupdates.oracle.com/readme/119090-33");
 script_set_attribute(attribute: "cvss_vector", value: "CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C");
 script_set_attribute(attribute:"plugin_publication_date", value: "2009/09/10");
 script_cvs_date("Date: 2019/10/25 13:36:25");
 script_end_attributes();

 script_summary(english: "Check for patch 119090-33");
 script_category(ACT_GATHER_INFO);
 script_copyright(english:"This script is Copyright (C) 2009-2019 Tenable Network Security, Inc.");
 family["english"] = "Solaris Local Security Checks";
 script_family(english:family["english"]);
 
 script_dependencies("ssh_get_info.nasl");
 script_require_keys("Host/Solaris/showrev");
 exit(0);
}



# Deprecated.
exit(0, "The associated patch is not currently a recommended security fix.");

References