Vulnerabilities > CVE-2011-0821 - Local vulnerability in SUN Sunos 5.10/5.8/5.9
Attack vector
LOCAL Attack complexity
MEDIUM Privileges required
SINGLE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
NONE Summary
Unspecified vulnerability in Oracle Solaris 8, 9, and 10 allows local users to affect confidentiality and integrity via unknown vectors related to uucp.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| OS | 3 |
Nessus
NASL family Solaris Local Security Checks NASL id SOLARIS8_X86_111571.NASL description SunOS 5.8_x86: uucp patch. Date this patch was last updated by Sun : Jan/06/06 last seen 2020-06-01 modified 2020-06-02 plugin id 13478 published 2004-07-12 reporter This script is Copyright (C) 2004-2019 Tenable Network Security, Inc. source https://www.tenable.com/plugins/nessus/13478 title Solaris 8 (x86) : 111571-04 code #%NASL_MIN_LEVEL 80502 # # (C) Tenable Network Security, Inc. # # The descriptive text in this plugin was # extracted from the Oracle SunOS Patch Updates. # include("compat.inc"); if (description) { script_id(13478); script_version("1.24"); script_cvs_date("Date: 2019/10/25 13:36:23"); script_cve_id("CVE-2011-0821"); script_name(english:"Solaris 8 (x86) : 111571-04"); script_summary(english:"Check for patch 111571-04"); script_set_attribute( attribute:"synopsis", value:"The remote host is missing Sun Security Patch number 111571-04" ); script_set_attribute( attribute:"description", value: "SunOS 5.8_x86: uucp patch. Date this patch was last updated by Sun : Jan/06/06" ); script_set_attribute( attribute:"see_also", value:"https://getupdates.oracle.com/readme/111571-04" ); script_set_attribute( attribute:"solution", value:"You should install this patch for your system to be up-to-date." ); script_set_cvss_base_vector("CVSS2#AV:L/AC:M/Au:S/C:P/I:P/A:N"); script_set_attribute(attribute:"plugin_type", value:"local"); script_set_attribute(attribute:"cpe", value:"cpe:/o:sun:solaris"); script_set_attribute(attribute:"patch_publication_date", value:"2006/01/06"); script_set_attribute(attribute:"plugin_publication_date", value:"2004/07/12"); script_end_attributes(); script_category(ACT_GATHER_INFO); script_copyright(english:"This script is Copyright (C) 2004-2019 Tenable Network Security, Inc."); script_family(english:"Solaris Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/local_checks_enabled", "Host/Solaris/showrev"); exit(0); } include("audit.inc"); include("global_settings.inc"); include("solaris.inc"); if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED); if (solaris_check_patch(release:"5.8_x86", arch:"i386", patch:"111571-04", obsoleted_by:"", package:"SUNWbnuu", version:"11.8.0,REV=2000.01.08.18.17") < 0) flag++; if (flag) { if (report_verbosity > 0) security_note(port:0, extra:solaris_get_report()); else security_note(0); exit(0); } audit(AUDIT_HOST_NOT, "affected");NASL family Solaris Local Security Checks NASL id SOLARIS9_113322.NASL description SunOS 5.9: uucp patch. Date this patch was last updated by Sun : Feb/25/11 last seen 2020-06-01 modified 2020-06-02 plugin id 13536 published 2004-07-12 reporter This script is Copyright (C) 2004-2019 Tenable Network Security, Inc. source https://www.tenable.com/plugins/nessus/13536 title Solaris 9 (sparc) : 113322-04 code #%NASL_MIN_LEVEL 80502 # # (C) Tenable Network Security, Inc. # # The descriptive text in this plugin was # extracted from the Oracle SunOS Patch Updates. # include("compat.inc"); if (description) { script_id(13536); script_version("1.24"); script_cvs_date("Date: 2019/10/25 13:36:27"); script_cve_id("CVE-2011-0821"); script_name(english:"Solaris 9 (sparc) : 113322-04"); script_summary(english:"Check for patch 113322-04"); script_set_attribute( attribute:"synopsis", value:"The remote host is missing Sun Security Patch number 113322-04" ); script_set_attribute( attribute:"description", value: "SunOS 5.9: uucp patch. Date this patch was last updated by Sun : Feb/25/11" ); script_set_attribute( attribute:"see_also", value:"https://getupdates.oracle.com/readme/113322-04" ); script_set_attribute( attribute:"solution", value:"You should install this patch for your system to be up-to-date." ); script_set_cvss_base_vector("CVSS2#AV:L/AC:M/Au:S/C:P/I:P/A:N"); script_set_attribute(attribute:"plugin_type", value:"local"); script_set_attribute(attribute:"cpe", value:"cpe:/o:sun:solaris"); script_set_attribute(attribute:"patch_publication_date", value:"2011/02/25"); script_set_attribute(attribute:"plugin_publication_date", value:"2004/07/12"); script_end_attributes(); script_category(ACT_GATHER_INFO); script_copyright(english:"This script is Copyright (C) 2004-2019 Tenable Network Security, Inc."); script_family(english:"Solaris Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/local_checks_enabled", "Host/Solaris/showrev"); exit(0); } include("audit.inc"); include("global_settings.inc"); include("solaris.inc"); if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED); if (solaris_check_patch(release:"5.9", arch:"sparc", patch:"113322-04", obsoleted_by:"", package:"SUNWbnuu", version:"11.9.0,REV=2002.04.06.15.27") < 0) flag++; if (flag) { if (report_verbosity > 0) security_note(port:0, extra:solaris_get_report()); else security_note(0); exit(0); } audit(AUDIT_HOST_NOT, "affected");NASL family Solaris Local Security Checks NASL id SOLARIS8_111570.NASL description SunOS 5.8: uucp patch. Date this patch was last updated by Sun : Jan/06/06 last seen 2020-06-01 modified 2020-06-02 plugin id 13375 published 2004-07-12 reporter This script is Copyright (C) 2004-2019 Tenable Network Security, Inc. source https://www.tenable.com/plugins/nessus/13375 title Solaris 8 (sparc) : 111570-04 code #%NASL_MIN_LEVEL 80502 # # (C) Tenable Network Security, Inc. # # The descriptive text in this plugin was # extracted from the Oracle SunOS Patch Updates. # include("compat.inc"); if (description) { script_id(13375); script_version("1.29"); script_cvs_date("Date: 2019/10/25 13:36:23"); script_cve_id("CVE-2011-0821"); script_name(english:"Solaris 8 (sparc) : 111570-04"); script_summary(english:"Check for patch 111570-04"); script_set_attribute( attribute:"synopsis", value:"The remote host is missing Sun Security Patch number 111570-04" ); script_set_attribute( attribute:"description", value: "SunOS 5.8: uucp patch. Date this patch was last updated by Sun : Jan/06/06" ); script_set_attribute( attribute:"see_also", value:"https://getupdates.oracle.com/readme/111570-04" ); script_set_attribute( attribute:"solution", value:"You should install this patch for your system to be up-to-date." ); script_set_cvss_base_vector("CVSS2#AV:L/AC:M/Au:S/C:P/I:P/A:N"); script_set_attribute(attribute:"plugin_type", value:"local"); script_set_attribute(attribute:"cpe", value:"cpe:/o:sun:solaris"); script_set_attribute(attribute:"patch_publication_date", value:"2006/01/06"); script_set_attribute(attribute:"plugin_publication_date", value:"2004/07/12"); script_end_attributes(); script_category(ACT_GATHER_INFO); script_copyright(english:"This script is Copyright (C) 2004-2019 Tenable Network Security, Inc."); script_family(english:"Solaris Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/local_checks_enabled", "Host/Solaris/showrev"); exit(0); } include("audit.inc"); include("global_settings.inc"); include("solaris.inc"); if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED); if (solaris_check_patch(release:"5.8", arch:"sparc", patch:"111570-04", obsoleted_by:"", package:"SUNWbnuu", version:"11.8.0,REV=2000.01.08.18.12") < 0) flag++; if (flag) { if (report_verbosity > 0) security_note(port:0, extra:solaris_get_report()); else security_note(0); exit(0); } audit(AUDIT_HOST_NOT, "affected");NASL family Solaris Local Security Checks NASL id SOLARIS10_X86_146280-01.NASL description SunOS 5.10_x86: uucp patch. Date this patch was last updated by Sun : Dec/22/10 last seen 2020-06-01 modified 2020-06-02 plugin id 108084 published 2018-03-12 reporter This script is Copyright (C) 2018-2019 and is owned by Tenable, Inc. or an Affiliate thereof. source https://www.tenable.com/plugins/nessus/108084 title Solaris 10 (x86) : 146280-01 code #%NASL_MIN_LEVEL 80502 # # (C) Tenable Network Security, Inc. # # The descriptive text in this plugin was # extracted from the Oracle SunOS Patch Updates. # include("compat.inc"); if (description) { script_id(108084); script_version("1.5"); script_cvs_date("Date: 2019/10/25 13:36:26"); script_cve_id("CVE-2011-0821"); script_name(english:"Solaris 10 (x86) : 146280-01"); script_summary(english:"Check for patch 146280-01"); script_set_attribute( attribute:"synopsis", value:"The remote host is missing Sun Security Patch number 146280-01" ); script_set_attribute( attribute:"description", value: "SunOS 5.10_x86: uucp patch. Date this patch was last updated by Sun : Dec/22/10" ); script_set_attribute( attribute:"see_also", value:"https://getupdates.oracle.com/readme/146280-01" ); script_set_attribute(attribute:"solution", value:"Install patch 146280-01"); script_set_cvss_base_vector("CVSS2#AV:L/AC:M/Au:S/C:P/I:P/A:N"); script_set_attribute(attribute:"plugin_type", value:"local"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:solaris:10:146280"); script_set_attribute(attribute:"cpe", value:"cpe:/o:oracle:solaris:10"); script_set_attribute(attribute:"patch_publication_date", value:"2010/12/22"); script_set_attribute(attribute:"plugin_publication_date", value:"2018/03/12"); script_set_attribute(attribute:"generated_plugin", value:"current"); script_end_attributes(); script_category(ACT_GATHER_INFO); script_copyright(english:"This script is Copyright (C) 2018-2019 and is owned by Tenable, Inc. or an Affiliate thereof."); script_family(english:"Solaris Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/local_checks_enabled", "Host/Solaris/showrev"); exit(0); } include("audit.inc"); include("global_settings.inc"); include("misc_func.inc"); include("solaris.inc"); showrev = get_kb_item("Host/Solaris/showrev"); if (empty_or_null(showrev)) audit(AUDIT_OS_NOT, "Solaris"); os_ver = pregmatch(pattern:"Release: (\d+.(\d+))", string:showrev); if (empty_or_null(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "Solaris"); full_ver = os_ver[1]; os_level = os_ver[2]; if (full_ver != "5.10") audit(AUDIT_OS_NOT, "Solaris 10", "Solaris " + os_level); package_arch = pregmatch(pattern:"Application architecture: (\w+)", string:showrev); if (empty_or_null(package_arch)) audit(AUDIT_UNKNOWN_ARCH); package_arch = package_arch[1]; if (package_arch != "i386") audit(AUDIT_ARCH_NOT, "i386", package_arch); if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED); if (solaris_check_patch(release:"5.10_x86", arch:"i386", patch:"146280-01", obsoleted_by:"147441-05 147148-26 146295-02 ", package:"SUNWbnuu", version:"11.10.0,REV=2005.01.21.16.34") < 0) flag++; if (flag) { security_report_v4( port : 0, severity : SECURITY_NOTE, extra : solaris_get_report() ); } else { patch_fix = solaris_patch_fix_get(); if (!empty_or_null(patch_fix)) audit(AUDIT_PATCH_INSTALLED, patch_fix, "Solaris 10"); tested = solaris_pkg_tests_get(); if (!empty_or_null(tested)) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested); audit(AUDIT_PACKAGE_NOT_INSTALLED, "SUNWbnuu"); }NASL family Solaris Local Security Checks NASL id SOLARIS9_X86_115880.NASL description SunOS 5.9_x86: uucp patch. Date this patch was last updated by Sun : Feb/25/11 last seen 2020-06-01 modified 2020-06-02 plugin id 13622 published 2004-07-12 reporter This script is Copyright (C) 2004-2019 Tenable Network Security, Inc. source https://www.tenable.com/plugins/nessus/13622 title Solaris 9 (x86) : 115880-03 code #%NASL_MIN_LEVEL 80502 # # (C) Tenable Network Security, Inc. # # The descriptive text in this plugin was # extracted from the Oracle SunOS Patch Updates. # include("compat.inc"); if (description) { script_id(13622); script_version("1.24"); script_cvs_date("Date: 2019/10/25 13:36:27"); script_cve_id("CVE-2011-0821"); script_name(english:"Solaris 9 (x86) : 115880-03"); script_summary(english:"Check for patch 115880-03"); script_set_attribute( attribute:"synopsis", value:"The remote host is missing Sun Security Patch number 115880-03" ); script_set_attribute( attribute:"description", value: "SunOS 5.9_x86: uucp patch. Date this patch was last updated by Sun : Feb/25/11" ); script_set_attribute( attribute:"see_also", value:"https://getupdates.oracle.com/readme/115880-03" ); script_set_attribute( attribute:"solution", value:"You should install this patch for your system to be up-to-date." ); script_set_cvss_base_vector("CVSS2#AV:L/AC:M/Au:S/C:P/I:P/A:N"); script_set_attribute(attribute:"plugin_type", value:"local"); script_set_attribute(attribute:"cpe", value:"cpe:/o:sun:solaris"); script_set_attribute(attribute:"patch_publication_date", value:"2011/02/25"); script_set_attribute(attribute:"plugin_publication_date", value:"2004/07/12"); script_end_attributes(); script_category(ACT_GATHER_INFO); script_copyright(english:"This script is Copyright (C) 2004-2019 Tenable Network Security, Inc."); script_family(english:"Solaris Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/local_checks_enabled", "Host/Solaris/showrev"); exit(0); } include("audit.inc"); include("global_settings.inc"); include("solaris.inc"); if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED); if (solaris_check_patch(release:"5.9_x86", arch:"i386", patch:"115880-03", obsoleted_by:"", package:"SUNWbnuu", version:"11.9.0,REV=2002.11.04.02.51") < 0) flag++; if (flag) { if (report_verbosity > 0) security_note(port:0, extra:solaris_get_report()); else security_note(0); exit(0); } audit(AUDIT_HOST_NOT, "affected");NASL family Solaris Local Security Checks NASL id SOLARIS10_146279-01.NASL description SunOS 5.10: uucp patch. Date this patch was last updated by Sun : Dec/22/10 last seen 2020-06-01 modified 2020-06-02 plugin id 107589 published 2018-03-12 reporter This script is Copyright (C) 2018-2019 and is owned by Tenable, Inc. or an Affiliate thereof. source https://www.tenable.com/plugins/nessus/107589 title Solaris 10 (sparc) : 146279-01 code #%NASL_MIN_LEVEL 80502 # # (C) Tenable Network Security, Inc. # # The descriptive text in this plugin was # extracted from the Oracle SunOS Patch Updates. # include("compat.inc"); if (description) { script_id(107589); script_version("1.4"); script_cvs_date("Date: 2019/10/25 13:36:26"); script_cve_id("CVE-2011-0821"); script_name(english:"Solaris 10 (sparc) : 146279-01"); script_summary(english:"Check for patch 146279-01"); script_set_attribute( attribute:"synopsis", value:"The remote host is missing Sun Security Patch number 146279-01" ); script_set_attribute( attribute:"description", value: "SunOS 5.10: uucp patch. Date this patch was last updated by Sun : Dec/22/10" ); script_set_attribute( attribute:"see_also", value:"https://getupdates.oracle.com/readme/146279-01" ); script_set_attribute(attribute:"solution", value:"Install patch 146279-01"); script_set_cvss_base_vector("CVSS2#AV:L/AC:M/Au:S/C:P/I:P/A:N"); script_set_attribute(attribute:"plugin_type", value:"local"); script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:solaris:10:146279"); script_set_attribute(attribute:"cpe", value:"cpe:/o:oracle:solaris:10"); script_set_attribute(attribute:"patch_publication_date", value:"2010/12/22"); script_set_attribute(attribute:"plugin_publication_date", value:"2018/03/12"); script_end_attributes(); script_category(ACT_GATHER_INFO); script_copyright(english:"This script is Copyright (C) 2018-2019 and is owned by Tenable, Inc. or an Affiliate thereof."); script_family(english:"Solaris Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/local_checks_enabled", "Host/Solaris/showrev"); exit(0); } include("audit.inc"); include("global_settings.inc"); include("misc_func.inc"); include("solaris.inc"); showrev = get_kb_item("Host/Solaris/showrev"); if (empty_or_null(showrev)) audit(AUDIT_OS_NOT, "Solaris"); os_ver = pregmatch(pattern:"Release: (\d+.(\d+))", string:showrev); if (empty_or_null(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "Solaris"); full_ver = os_ver[1]; os_level = os_ver[2]; if (full_ver != "5.10") audit(AUDIT_OS_NOT, "Solaris 10", "Solaris " + os_level); package_arch = pregmatch(pattern:"Application architecture: (\w+)", string:showrev); if (empty_or_null(package_arch)) audit(AUDIT_UNKNOWN_ARCH); package_arch = package_arch[1]; if (package_arch != "sparc") audit(AUDIT_ARCH_NOT, "sparc", package_arch); if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED); if (solaris_check_patch(release:"5.10", arch:"sparc", patch:"146279-01", obsoleted_by:"147440-05 146294-02 147147-26 ", package:"SUNWbnuu", version:"11.10.0,REV=2005.01.21.15.53") < 0) flag++; if (flag) { security_report_v4( port : 0, severity : SECURITY_NOTE, extra : solaris_get_report() ); } else { patch_fix = solaris_patch_fix_get(); if (!empty_or_null(patch_fix)) audit(AUDIT_PATCH_INSTALLED, patch_fix, "Solaris 10"); tested = solaris_pkg_tests_get(); if (!empty_or_null(tested)) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested); audit(AUDIT_PACKAGE_NOT_INSTALLED, "SUNWbnuu"); }