Lucene search

MitreCVE-2001-1555

HistoryJul 14, 2005 - 4:00 a.m.

CVE-2001-1555

2005-07-1404:00:00

mitre

web.nvd.nist.gov

solaris 8

pt_chmod

terminal privileges

local attackers

cve-2001-1555

nvd

CVSS2

4.6

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

AI Score

6.7

Confidence

High

EPSS

Percentile

13.2%

JSON

pt_chmod in Solaris 8 does not call fdetach to reset terminal privileges when users log out of terminals, which allows local users to write to other users’ terminals by modifying the ACL of a TTY.

Affected configurations

Nvd

Node

sunsolarisMatch8.0x86

sunsunosMatch5.8

VendorProductVersionCPE
sunsolaris8.0cpe:2.3:o:sun:solaris:8.0:*:x86:*:*:*:*:*
sunsunos5.8cpe:2.3:o:sun:sunos:5.8:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
sun	solaris	8.0	cpe:2.3:o:sun:solaris:8.0::x86:::::
sun	sunos	5.8	cpe:2.3:o:sun:sunos:5.8:::::::*

References

securitytracker.com/id?1002732

securitytracker.com/id?1004035

sunsolve.sun.com/search/document.do?assetkey=1-26-43929-1

www.securityfocus.com/bid/3522

CVSS2

4.6

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

AI Score

6.7

Confidence

High

EPSS

Percentile

13.2%

JSON

Related for CVE-2001-1555