Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
saintSAINT CorporationSAINT:A4F4807D71B0BF50E1E9AAF3A255C958
HistoryJun 22, 2007 - 12:00 a.m.

Solaris loadable kernel module directory traversal

2007-06-2200:00:00
SAINT Corporation
download.saintcorporation.com
18

EPSS

0.002

Percentile

55.2%

JSON

Added: 06/22/2007
CVE: CVE-2004-1767
BID: 9477
OSVDB: 15128

Background

Loadable kernel modules are programs which can be dynamically loaded into the kernel.

Problem

A directory traversal vulnerability in the **vfs_getvfssw** function in the Solaris kernel allows unprivileged users to load their own kernel modules through a specially crafted **mount** or **sysfs** system call, leading to privilege elevation.

Resolution

Apply the patch referenced in Sun Alert 57479.

References

<http://www.kb.cert.org/vuls/id/702526&gt;

Platforms

SunOS / Solaris

Related

cve 2
nvd 2
saint 3
cvelist 2
cve
cve
CVE-2004-1767
2005-03-10 05:00:00
CVE-2004-2686
2007-09-23 23:00:00
nvd
nvd
CVE-2004-1767
2004-12-31 05:00:00
CVE-2004-2686
2004-12-31 05:00:00
saint
saint
Solaris loadable kernel module directory traversal
2007-06-22 00:00:00
Solaris loadable kernel module directory traversal
2007-06-22 00:00:00
Solaris loadable kernel module directory traversal
2007-06-22 00:00:00
cvelist
cvelist
CVE-2004-1767
2005-03-10 05:00:00
CVE-2004-2686
2007-09-23 23:00:00

EPSS

0.002

Percentile

55.2%

JSON
Related for SAINT:A4F4807D71B0BF50E1E9AAF3A255C958
cve2nvd2saint3cvelist2