Vulnerabilities > CVE-2013-0400 - Unspecified vulnerability in SUN Sunos 5.10/5.9

047910
CVSS 0.0 - NONE
Attack vector
UNKNOWN
Attack complexity
UNKNOWN
Privileges required
UNKNOWN
Confidentiality impact
UNKNOWN
Integrity impact
UNKNOWN
Availability impact
UNKNOWN
sun
nessus

Summary

Unspecified vulnerability in Oracle Sun Solaris 9 and 10 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Filesystem/cachefs.

Vulnerable Configurations

Part Description Count
OS
Sun
2

Nessus

  • NASL familySolaris Local Security Checks
    NASL idSOLARIS10_148407.NASL
    descriptionVulnerability in the Solaris component of Oracle Sun Products Suite (subcomponent: Utility/Umount). Supported versions that are affected are 9 and 10. Difficult to exploit vulnerability requiring logon to Operating System plus additional login/authentication to component or subcomponent. Successful attack of this vulnerability can escalate attacker privileges resulting in unauthorized Operating System takeover including arbitrary code execution. Vulnerability in the Solaris component of Oracle Sun Products Suite (subcomponent: Filesystem/cachefs). Supported versions that are affected are 9 and 10. Difficult to exploit vulnerability requiring logon to Operating System plus additional login/authentication to component or subcomponent. Successful attack of this vulnerability can escalate attacker privileges resulting in unauthorized Operating System takeover including arbitrary code execution. This plugin has been deprecated and either replaced with individual 148407 patch-revision plugins, or deemed non-security related.
    last seen2019-02-21
    modified2018-07-30
    plugin id59287
    published2012-05-29
    reporterTenable
    sourcehttps://www.tenable.com/plugins/index.php?view=single&id=59287
    titleSolaris 10 (sparc) : 148407-01 (deprecated)
    code
    
    #
    # (C) Tenable Network Security, Inc.
    #
    # @DEPRECATED@
    #
    # Disabled on 2018/03/12. Deprecated and either replaced by
    # individual patch-revision plugins, or has been deemed a
    # non-security advisory.
    #
    include("compat.inc");
    
    if (description)
    {
      script_id(59287);
      script_version("1.7");
      script_cvs_date("Date: 2018/07/30 13:40:14");
    
      script_cve_id("CVE-2013-0399", "CVE-2013-0400");
    
      script_name(english:"Solaris 10 (sparc) : 148407-01 (deprecated)");
      script_summary(english:"Check for patch 148407-01");
    
      script_set_attribute(
        attribute:"synopsis", 
        value:"This plugin has been deprecated."
      );
      script_set_attribute(
        attribute:"description",
        value:
    "Vulnerability in the Solaris component of Oracle Sun Products Suite
    (subcomponent: Utility/Umount). Supported versions that are affected
    are 9 and 10. Difficult to exploit vulnerability requiring logon to
    Operating System plus additional login/authentication to component or
    subcomponent. Successful attack of this vulnerability can escalate
    attacker privileges resulting in unauthorized Operating System
    takeover including arbitrary code execution.
    
    Vulnerability in the Solaris component of Oracle Sun Products Suite
    (subcomponent: Filesystem/cachefs). Supported versions that are
    affected are 9 and 10. Difficult to exploit vulnerability requiring
    logon to Operating System plus additional login/authentication to
    component or subcomponent. Successful attack of this vulnerability can
    escalate attacker privileges resulting in unauthorized Operating
    System takeover including arbitrary code execution.
    
    This plugin has been deprecated and either replaced with individual
    148407 patch-revision plugins, or deemed non-security related."
      );
      script_set_attribute(
        attribute:"see_also",
        value:"https://getupdates.oracle.com/readme/148407-01"
      );
      script_set_attribute(
        attribute:"solution", 
        value:"n/a"
      );
      script_set_cvss_base_vector("CVSS2#AV:L/AC:M/Au:S/C:C/I:C/A:C");
    
      script_set_attribute(attribute:"plugin_type", value:"local");
      script_set_attribute(attribute:"cpe", value:"cpe:/o:sun:solaris");
    
      script_set_attribute(attribute:"patch_publication_date", value:"2012/05/21");
      script_set_attribute(attribute:"plugin_publication_date", value:"2012/05/29");
      script_end_attributes();
    
      script_category(ACT_GATHER_INFO);
      script_copyright(english:"This script is Copyright (C) 2012-2018 Tenable Network Security, Inc.");
      script_family(english:"Solaris Local Security Checks");
    
      script_dependencies("ssh_get_info.nasl");
      script_require_keys("Host/local_checks_enabled", "Host/Solaris/showrev");
    
      exit(0);
    }
    
    exit(0, "This plugin has been deprecated. Consult specific patch-revision plugins for patch 148407 instead.");
    
  • NASL familySolaris Local Security Checks
    NASL idSOLARIS10_X86_148408-01.NASL
    descriptionVulnerability in the Solaris component of Oracle Sun Products Suite (subcomponent: Utility/Umount). Supported versions that are affected are 9 and 10. Difficult to exploit vulnerability requiring logon to Operating System plus additional login/authentication to component or subcomponent. Successful attack of this vulnerability can escalate attacker privileges resulting in unauthorized Operating System takeover including arbitrary code execution. Vulnerability in the Solaris component of Oracle Sun Products Suite (subcomponent: Filesystem/cachefs). Supported versions that are affected are 9 and 10. Difficult to exploit vulnerability requiring logon to Operating System plus additional login/authentication to component or subcomponent. Successful attack of this vulnerability can escalate attacker privileges resulting in unauthorized Operating System takeover including arbitrary code execution.
    last seen2020-06-01
    modified2020-06-02
    plugin id108148
    published2018-03-12
    reporterThis script is Copyright (C) 2018-2020 and is owned by Tenable, Inc. or an Affiliate thereof.
    sourcehttps://www.tenable.com/plugins/nessus/108148
    titleSolaris 10 (x86) : 148408-01
  • NASL familySolaris Local Security Checks
    NASL idSOLARIS10_148407-01.NASL
    descriptionVulnerability in the Solaris component of Oracle Sun Products Suite (subcomponent: Utility/Umount). Supported versions that are affected are 9 and 10. Difficult to exploit vulnerability requiring logon to Operating System plus additional login/authentication to component or subcomponent. Successful attack of this vulnerability can escalate attacker privileges resulting in unauthorized Operating System takeover including arbitrary code execution. Vulnerability in the Solaris component of Oracle Sun Products Suite (subcomponent: Filesystem/cachefs). Supported versions that are affected are 9 and 10. Difficult to exploit vulnerability requiring logon to Operating System plus additional login/authentication to component or subcomponent. Successful attack of this vulnerability can escalate attacker privileges resulting in unauthorized Operating System takeover including arbitrary code execution.
    last seen2020-06-01
    modified2020-06-02
    plugin id107655
    published2018-03-12
    reporterThis script is Copyright (C) 2018-2020 and is owned by Tenable, Inc. or an Affiliate thereof.
    sourcehttps://www.tenable.com/plugins/nessus/107655
    titleSolaris 10 (sparc) : 148407-01
  • NASL familySolaris Local Security Checks
    NASL idSOLARIS10_X86_148408.NASL
    descriptionVulnerability in the Solaris component of Oracle Sun Products Suite (subcomponent: Utility/Umount). Supported versions that are affected are 9 and 10. Difficult to exploit vulnerability requiring logon to Operating System plus additional login/authentication to component or subcomponent. Successful attack of this vulnerability can escalate attacker privileges resulting in unauthorized Operating System takeover including arbitrary code execution. Vulnerability in the Solaris component of Oracle Sun Products Suite (subcomponent: Filesystem/cachefs). Supported versions that are affected are 9 and 10. Difficult to exploit vulnerability requiring logon to Operating System plus additional login/authentication to component or subcomponent. Successful attack of this vulnerability can escalate attacker privileges resulting in unauthorized Operating System takeover including arbitrary code execution. This plugin has been deprecated and either replaced with individual 148408 patch-revision plugins, or deemed non-security related.
    last seen2019-02-21
    modified2018-07-30
    plugin id59236
    published2012-05-23
    reporterTenable
    sourcehttps://www.tenable.com/plugins/index.php?view=single&id=59236
    titleSolaris 10 (x86) : 148408-01 (deprecated)

Oval

accepted2013-12-30T04:00:24.902-05:00
classvulnerability
contributors
nameMerryl DMello
organizationHewlett-Packard
definition_extensions
  • commentSolaris 10 (SPARC) is installed
    ovaloval:org.mitre.oval:def:1440
  • commentSolaris 10 (x86) is installed
    ovaloval:org.mitre.oval:def:1926
descriptionUnspecified vulnerability in Oracle Sun Solaris 9 and 10 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Filesystem/cachefs.
familyunix
idoval:org.mitre.oval:def:19308
statusaccepted
submitted2013-11-20T11:43:28.000-05:00
titleCRITICAL PATCH UPDATE JANUARY 2013
version37