Vulnerabilities > CVE-2013-3813 - Remote Security vulnerability in SUN Sunos 5.10

047910
CVSS 5.8 - MEDIUM
Attack vector
NETWORK
Attack complexity
MEDIUM
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
NONE
network
sun
nessus

Summary

Unspecified vulnerability in Oracle Solaris 10 allows remote attackers to affect confidentiality and integrity via vectors related to Libraries/PAM-Unix.

Vulnerable Configurations

Part Description Count
OS
Sun
1

Nessus

  • NASL familySolaris Local Security Checks
    NASL idSOLARIS10_X86_148694.NASL
    descriptionVulnerability in the Solaris component of Oracle and Sun Systems Products Suite (subcomponent: Libraries/PAM-Unix). The supported version that is affected is 10. Difficult to exploit vulnerability allows successful unauthenticated network attacks via NFSv2. Successful attack of this vulnerability can result in unauthorized update, insert or delete access to some Solaris accessible data as well as read access to a subset of Solaris accessible data. This plugin has been deprecated and either replaced with individual 148694 patch-revision plugins, or deemed non-security related.
    last seen2019-02-21
    modified2018-07-30
    plugin id68872
    published2013-07-14
    reporterTenable
    sourcehttps://www.tenable.com/plugins/index.php?view=single&id=68872
    titleSolaris 10 (x86) : 148694-01 (deprecated)
  • NASL familySolaris Local Security Checks
    NASL idSOLARIS10_148693-01.NASL
    descriptionVulnerability in the Solaris component of Oracle and Sun Systems Products Suite (subcomponent: Libraries/PAM-Unix). The supported version that is affected is 10. Difficult to exploit vulnerability allows successful unauthenticated network attacks via NFSv2. Successful attack of this vulnerability can result in unauthorized update, insert or delete access to some Solaris accessible data as well as read access to a subset of Solaris accessible data.
    last seen2020-06-01
    modified2020-06-02
    plugin id107665
    published2018-03-12
    reporterThis script is Copyright (C) 2018-2020 and is owned by Tenable, Inc. or an Affiliate thereof.
    sourcehttps://www.tenable.com/plugins/nessus/107665
    titleSolaris 10 (sparc) : 148693-01
  • NASL familySolaris Local Security Checks
    NASL idSOLARIS10_148693.NASL
    descriptionVulnerability in the Solaris component of Oracle and Sun Systems Products Suite (subcomponent: Libraries/PAM-Unix). The supported version that is affected is 10. Difficult to exploit vulnerability allows successful unauthenticated network attacks via NFSv2. Successful attack of this vulnerability can result in unauthorized update, insert or delete access to some Solaris accessible data as well as read access to a subset of Solaris accessible data. This plugin has been deprecated and either replaced with individual 148693 patch-revision plugins, or deemed non-security related.
    last seen2019-02-21
    modified2018-07-30
    plugin id68870
    published2013-07-14
    reporterTenable
    sourcehttps://www.tenable.com/plugins/index.php?view=single&id=68870
    titleSolaris 10 (sparc) : 148693-01 (deprecated)
  • NASL familySolaris Local Security Checks
    NASL idSOLARIS10_X86_148694-01.NASL
    descriptionVulnerability in the Solaris component of Oracle and Sun Systems Products Suite (subcomponent: Libraries/PAM-Unix). The supported version that is affected is 10. Difficult to exploit vulnerability allows successful unauthenticated network attacks via NFSv2. Successful attack of this vulnerability can result in unauthorized update, insert or delete access to some Solaris accessible data as well as read access to a subset of Solaris accessible data.
    last seen2020-06-01
    modified2020-06-02
    plugin id108158
    published2018-03-12
    reporterThis script is Copyright (C) 2018-2020 and is owned by Tenable, Inc. or an Affiliate thereof.
    sourcehttps://www.tenable.com/plugins/nessus/108158
    titleSolaris 10 (x86) : 148694-01

Oval

accepted2013-12-30T04:00:22.833-05:00
classvulnerability
contributors
nameMerryl DMello
organizationHewlett-Packard
definition_extensions
  • commentSolaris 10 (SPARC) is installed
    ovaloval:org.mitre.oval:def:1440
  • commentSolaris 10 (x86) is installed
    ovaloval:org.mitre.oval:def:1926
descriptionUnspecified vulnerability in Oracle Solaris 10 allows remote attackers to affect confidentiality and integrity via vectors related to Libraries/PAM-Unix.
familyunix
idoval:org.mitre.oval:def:19221
statusaccepted
submitted2013-11-20T11:43:28.000-05:00
titleCRITICAL PATCH UPDATE JULY 2013
version37