Sun Solaris Local Information Disclosure Vulnerability

vendor:

Solaris

by:

SecurityFocus

7.2

CVSS

HIGH

Information Disclosure

200

CWE

Product Name: Solaris

Affected Version From: N/A

Affected Version To: N/A

Patch Exists: NO

Related CWE: N/A

CPE: N/A

Metasploit: N/A

Other Scripts: N/A

Tags: N/A

CVSS Metrics: N/A

Nuclei References: N/A

Nuclei Metadata: N/A

Platforms Tested: N/A

2006

Sun Solaris Local Information Disclosure Vulnerability

Sun Solaris is prone to a local information-disclosure vulnerability. This issue allows local attackers to gain access to potentially sensitive information that may aid them in further attacks. The following proof of concept is available: /usr/ucb/ps -auxgeww Successful exploitation of this issue may lead to a loss of confidentiality.

Mitigation:

System administrators should restrict access to the vulnerable system to trusted users. Additionally, system administrators should consider implementing a host-based intrusion-prevention system to detect and block attacks.

Source

Sun Solaris Local Information Disclosure Vulnerability

Mitigation:

Exploit-DB raw data: