CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
EPSS
Percentile
55.2%
Added: 06/22/2007
CVE: CVE-2004-1767
BID: 9477
OSVDB: 15128
Loadable kernel modules are programs which can be dynamically loaded into the kernel.
A directory traversal vulnerability in the **vfs_getvfssw**
function in the Solaris kernel allows unprivileged users to load their own kernel modules through a specially crafted **mount**
or **sysfs**
system call, leading to privilege elevation.
Apply the patch referenced in Sun Alert 57479.
<http://www.kb.cert.org/vuls/id/702526>
SunOS / Solaris