Vulnerabilities > CVE-2009-3468 - Local Privilege Escalation vulnerability in SUN Solaris 10.0
Attack vector
LOCAL Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
COMPLETE Integrity impact
COMPLETE Availability impact
COMPLETE Summary
Multiple unspecified vulnerabilities in Common Desktop Environment (CDE) in Sun Solaris 10, when Trusted Extensions is enabled, allow local users to execute arbitrary commands or bypass the Mandatory Access Control (MAC) policy via unknown vectors, related to a menu typo and the Style Manager.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| OS | 2 |
Nessus
NASL family Solaris Local Security Checks NASL id SOLARIS10_139620.NASL description CDE 1.6: Dthelp patch. Date this patch was last updated by Sun : Sep/22/09 This plugin has been deprecated and either replaced with individual 139620 patch-revision plugins, or deemed non-security related. last seen 2019-02-21 modified 2018-07-30 plugin id 41053 published 2009-09-23 reporter Tenable source https://www.tenable.com/plugins/index.php?view=single&id=41053 title Solaris 10 (sparc) : 139620-01 (deprecated) code #%NASL_MIN_LEVEL 80502 # # (C) Tenable Network Security, Inc. # # @DEPRECATED@ # # Disabled on 2018/03/12. Deprecated and either replaced by # individual patch-revision plugins, or has been deemed a # non-security advisory. # include("compat.inc"); if (description) { script_id(41053); script_version("1.22"); script_cvs_date("Date: 2019/10/25 13:36:25"); script_cve_id("CVE-2009-3468"); script_bugtraq_id(36510); script_name(english:"Solaris 10 (sparc) : 139620-01 (deprecated)"); script_summary(english:"Check for patch 139620-01"); script_set_attribute( attribute:"synopsis", value:"This plugin has been deprecated." ); script_set_attribute( attribute:"description", value: "CDE 1.6: Dthelp patch. Date this patch was last updated by Sun : Sep/22/09 This plugin has been deprecated and either replaced with individual 139620 patch-revision plugins, or deemed non-security related." ); script_set_attribute( attribute:"see_also", value:"https://getupdates.oracle.com/readme/139620-01" ); script_set_attribute( attribute:"solution", value:"n/a" ); script_set_cvss_base_vector("CVSS2#AV:L/AC:M/Au:N/C:C/I:C/A:C"); script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C"); script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available"); script_set_attribute(attribute:"exploit_available", value:"false"); script_set_attribute(attribute:"plugin_type", value:"local"); script_set_attribute(attribute:"cpe", value:"cpe:/o:sun:solaris"); script_set_attribute(attribute:"patch_publication_date", value:"2009/09/22"); script_set_attribute(attribute:"plugin_publication_date", value:"2009/09/23"); script_end_attributes(); script_category(ACT_GATHER_INFO); script_copyright(english:"This script is Copyright (C) 2009-2019 Tenable Network Security, Inc."); script_family(english:"Solaris Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/local_checks_enabled", "Host/Solaris/showrev"); exit(0); } exit(0, "This plugin has been deprecated. Consult specific patch-revision plugins for patch 139620 instead.");NASL family Solaris Local Security Checks NASL id SOLARIS10_X86_139621.NASL description CDE 1.6_x86: DtHelp patch. Date this patch was last updated by Sun : Sep/22/09 This plugin has been deprecated and either replaced with individual 139621 patch-revision plugins, or deemed non-security related. last seen 2019-02-21 modified 2018-07-30 plugin id 41055 published 2009-09-23 reporter Tenable source https://www.tenable.com/plugins/index.php?view=single&id=41055 title Solaris 10 (x86) : 139621-01 (deprecated) code #%NASL_MIN_LEVEL 80502 # # (C) Tenable Network Security, Inc. # # @DEPRECATED@ # # Disabled on 2018/03/12. Deprecated and either replaced by # individual patch-revision plugins, or has been deemed a # non-security advisory. # include("compat.inc"); if (description) { script_id(41055); script_version("1.22"); script_cvs_date("Date: 2019/10/25 13:36:25"); script_cve_id("CVE-2009-3468"); script_bugtraq_id(36510); script_name(english:"Solaris 10 (x86) : 139621-01 (deprecated)"); script_summary(english:"Check for patch 139621-01"); script_set_attribute( attribute:"synopsis", value:"This plugin has been deprecated." ); script_set_attribute( attribute:"description", value: "CDE 1.6_x86: DtHelp patch. Date this patch was last updated by Sun : Sep/22/09 This plugin has been deprecated and either replaced with individual 139621 patch-revision plugins, or deemed non-security related." ); script_set_attribute( attribute:"see_also", value:"https://getupdates.oracle.com/readme/139621-01" ); script_set_attribute( attribute:"solution", value:"n/a" ); script_set_cvss_base_vector("CVSS2#AV:L/AC:M/Au:N/C:C/I:C/A:C"); script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C"); script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available"); script_set_attribute(attribute:"exploit_available", value:"false"); script_set_attribute(attribute:"plugin_type", value:"local"); script_set_attribute(attribute:"cpe", value:"cpe:/o:sun:solaris"); script_set_attribute(attribute:"patch_publication_date", value:"2009/09/22"); script_set_attribute(attribute:"plugin_publication_date", value:"2009/09/23"); script_end_attributes(); script_category(ACT_GATHER_INFO); script_copyright(english:"This script is Copyright (C) 2009-2019 Tenable Network Security, Inc."); script_family(english:"Solaris Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/local_checks_enabled", "Host/Solaris/showrev"); exit(0); } exit(0, "This plugin has been deprecated. Consult specific patch-revision plugins for patch 139621 instead.");NASL family Solaris Local Security Checks NASL id SOLARIS10_126365.NASL description SunOS 5.10: CDE Desktop changes - Solaris. Date this patch was last updated by Sun : Dec/07/09 This plugin has been deprecated and either replaced with individual 126365 patch-revision plugins, or deemed non-security related. last seen 2019-02-21 modified 2018-07-30 plugin id 41052 published 2009-09-23 reporter Tenable source https://www.tenable.com/plugins/index.php?view=single&id=41052 title Solaris 10 (sparc) : 126365-16 (deprecated) code #%NASL_MIN_LEVEL 80502 # # (C) Tenable Network Security, Inc. # # @DEPRECATED@ # # Disabled on 2018/03/12. Deprecated and either replaced by # individual patch-revision plugins, or has been deemed a # non-security advisory. # include("compat.inc"); if (description) { script_id(41052); script_version("1.24"); script_cvs_date("Date: 2019/10/25 13:36:25"); script_cve_id("CVE-2009-3468"); script_bugtraq_id(36510); script_name(english:"Solaris 10 (sparc) : 126365-16 (deprecated)"); script_summary(english:"Check for patch 126365-16"); script_set_attribute( attribute:"synopsis", value:"This plugin has been deprecated." ); script_set_attribute( attribute:"description", value: "SunOS 5.10: CDE Desktop changes - Solaris. Date this patch was last updated by Sun : Dec/07/09 This plugin has been deprecated and either replaced with individual 126365 patch-revision plugins, or deemed non-security related." ); script_set_attribute( attribute:"see_also", value:"https://getupdates.oracle.com/readme/126365-16" ); script_set_attribute( attribute:"solution", value:"n/a" ); script_set_cvss_base_vector("CVSS2#AV:L/AC:M/Au:N/C:C/I:C/A:C"); script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C"); script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available"); script_set_attribute(attribute:"exploit_available", value:"false"); script_set_attribute(attribute:"plugin_type", value:"local"); script_set_attribute(attribute:"cpe", value:"cpe:/o:sun:solaris"); script_set_attribute(attribute:"patch_publication_date", value:"2009/12/07"); script_set_attribute(attribute:"plugin_publication_date", value:"2009/09/23"); script_end_attributes(); script_category(ACT_GATHER_INFO); script_copyright(english:"This script is Copyright (C) 2009-2019 Tenable Network Security, Inc."); script_family(english:"Solaris Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/local_checks_enabled", "Host/Solaris/showrev"); exit(0); } exit(0, "This plugin has been deprecated. Consult specific patch-revision plugins for patch 126365 instead.");NASL family Solaris Local Security Checks NASL id SOLARIS10_X86_126366.NASL description SunOS 5.10_x86: CDE Desktop changes - Sola. Date this patch was last updated by Sun : Dec/07/09 This plugin has been deprecated and either replaced with individual 126366 patch-revision plugins, or deemed non-security related. last seen 2019-02-21 modified 2018-07-30 plugin id 41054 published 2009-09-23 reporter Tenable source https://www.tenable.com/plugins/index.php?view=single&id=41054 title Solaris 10 (x86) : 126366-16 (deprecated) code #%NASL_MIN_LEVEL 80502 # # (C) Tenable Network Security, Inc. # # @DEPRECATED@ # # Disabled on 2018/03/12. Deprecated and either replaced by # individual patch-revision plugins, or has been deemed a # non-security advisory. # include("compat.inc"); if (description) { script_id(41054); script_version("1.22"); script_cvs_date("Date: 2019/10/25 13:36:25"); script_cve_id("CVE-2009-3468"); script_bugtraq_id(36510); script_name(english:"Solaris 10 (x86) : 126366-16 (deprecated)"); script_summary(english:"Check for patch 126366-16"); script_set_attribute( attribute:"synopsis", value:"This plugin has been deprecated." ); script_set_attribute( attribute:"description", value: "SunOS 5.10_x86: CDE Desktop changes - Sola. Date this patch was last updated by Sun : Dec/07/09 This plugin has been deprecated and either replaced with individual 126366 patch-revision plugins, or deemed non-security related." ); script_set_attribute( attribute:"see_also", value:"https://getupdates.oracle.com/readme/126366-16" ); script_set_attribute( attribute:"solution", value:"n/a" ); script_set_cvss_base_vector("CVSS2#AV:L/AC:M/Au:N/C:C/I:C/A:C"); script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C"); script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available"); script_set_attribute(attribute:"exploit_available", value:"false"); script_set_attribute(attribute:"plugin_type", value:"local"); script_set_attribute(attribute:"cpe", value:"cpe:/o:sun:solaris"); script_set_attribute(attribute:"patch_publication_date", value:"2009/12/07"); script_set_attribute(attribute:"plugin_publication_date", value:"2009/09/23"); script_end_attributes(); script_category(ACT_GATHER_INFO); script_copyright(english:"This script is Copyright (C) 2009-2019 Tenable Network Security, Inc."); script_family(english:"Solaris Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/local_checks_enabled", "Host/Solaris/showrev"); exit(0); } exit(0, "This plugin has been deprecated. Consult specific patch-revision plugins for patch 126366 instead.");NASL family Solaris Local Security Checks NASL id SOLARIS10_139620-01.NASL description CDE 1.6: Dthelp patch. Date this patch was last updated by Sun : Sep/22/09 last seen 2020-06-01 modified 2020-06-02 plugin id 107518 published 2018-03-12 reporter This script is Copyright (C) 2018-2019 and is owned by Tenable, Inc. or an Affiliate thereof. source https://www.tenable.com/plugins/nessus/107518 title Solaris 10 (sparc) : 139620-01
References
- http://osvdb.org/58319
- http://secunia.com/advisories/36822
- http://sunsolve.sun.com/search/document.do?assetkey=1-21-126365-15-1
- http://sunsolve.sun.com/search/document.do?assetkey=1-21-139620-01-1
- http://sunsolve.sun.com/search/document.do?assetkey=1-66-267488-1
- http://www.securityfocus.com/bid/36510
- http://www.securitytracker.com/id?1022943
- http://www.vupen.com/english/advisories/2009/2756
- https://exchange.xforce.ibmcloud.com/vulnerabilities/53461