Lucene search

MitreCVE-2004-1345

HistoryJan 19, 2005 - 5:00 a.m.

CVE-2004-1345

2005-01-1905:00:00

mitre

web.nvd.nist.gov

cve-2004-1345

sun storedge

enterprise storage manager

esm

solaris

vulnerability

local users

root access

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

AI Score

Confidence

Low

EPSS

0.001

Percentile

42.6%

JSON

Unknown vulnerability in Sun StorEdge Enterprise Storage Manager (ESM) 2.1 for Solaris 8 and Solaris 9 allows local users with the “ESMUser” role to gain root access.

Affected configurations

Nvd

Node

sunstoredge_3310_scsi_array

sunstoredge_3510_fc_array

AND

sunenterprise_storage_managerMatch2.1

VendorProductVersionCPE
sunstoredge_3310_scsi_array*cpe:2.3:h:sun:storedge_3310_scsi_array:*:*:*:*:*:*:*:*
sunstoredge_3510_fc_array*cpe:2.3:h:sun:storedge_3510_fc_array:*:*:*:*:*:*:*:*
sunenterprise_storage_manager2.1cpe:2.3:a:sun:enterprise_storage_manager:2.1:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
sun	storedge_3310_scsi_array	*	cpe:2.3:h:sun:storedge_3310_scsi_array::::::::
sun	storedge_3510_fc_array	*	cpe:2.3:h:sun:storedge_3510_fc_array::::::::
sun	enterprise_storage_manager	2.1	cpe:2.3:a:sun:enterprise_storage_manager:2.1:::::::*

References

secunia.com/advisories/11935/

sunsolve.sun.com/search/document.do?assetkey=1-26-57581-1&searchclause=security

www.ciac.org/ciac/bulletins/o-166.shtml

www.kb.cert.org/vuls/id/976470

www.securityfocus.com/bid/10580

exchange.xforce.ibmcloud.com/vulnerabilities/16463

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1707

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

AI Score

Confidence

Low

EPSS

0.001

Percentile

42.6%

JSON

Related for CVE-2004-1345