CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
AI Score
Confidence
Low
EPSS
Percentile
73.1%
The patches (1) 114332-08 and (2) 114929-06 for Sun Solaris 9 disable the auditing functionality of the Basic Security Module (BSM), which allows attackers to avoid having their activity logged.
sunsolve.sun.com/search/document.do?assetkey=1-26-57478-1&searchclause=%22category:security%22%20%20114332-08
www.auscert.org.au/render.html?it=3788
www.ciac.org/ciac/bulletins/o-099.shtml
www.securityfocus.com/bid/9852
exchange.xforce.ibmcloud.com/vulnerabilities/14918
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A3567