CVE-2008-0242

Unspecified vulnerability in libdevinfo in Sun Solaris 10 allows local users to access files and gain privileges via unknown vectors, related to login device permissions.

CVSS v2.0 7.2 HIGH

7.2^/10

CVSS v2.0 : HIGH

Vector : AV:L/AC:L/Au:N/C:C/I:C/A:C

Exploitability : 3.9 / Impact : 10.0

Access Vector LOCAL

Access Complexity LOW

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References

Link	Resource
http://sunsolve.sun.com/search/document.do?assetkey=1-26-103165-1
http://www.securityfocus.com/bid/27253
http://www.securitytracker.com/id?1019187
http://secunia.com/advisories/28493
http://sunsolve.sun.com/search/document.do?assetkey=1-66-200641-1
http://www.vupen.com/english/advisories/2008/0131
https://exchange.xforce.ibmcloud.com/vulnerabilities/39629
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5211

Advertisement

Configurations

Configuration 1 (hide)

OR	cpe:2.3:o:sun:solaris:10.0::sparc:::::
	cpe:2.3:o:sun:solaris:10.0::x86:::::

Information

Published : 2008-01-11 18:46

Updated : 2017-09-28 18:30

NVD link : CVE-2008-0242

Mitre link : CVE-2008-0242

JSON object : View

CWE

NVD-CWE-noinfo

Advertisement

Products Affected

sun

solaris

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-103165-1", "name": "103165", "tags": [], "refsource": "SUNALERT"}, {"url": "http://www.securityfocus.com/bid/27253", "name": "27253", "tags": [], "refsource": "BID"}, {"url": "http://www.securitytracker.com/id?1019187", "name": "1019187", "tags": [], "refsource": "SECTRACK"}, {"url": "http://secunia.com/advisories/28493", "name": "28493", "tags": [], "refsource": "SECUNIA"}, {"url": "http://sunsolve.sun.com/search/document.do?assetkey=1-66-200641-1", "name": "200641", "tags": [], "refsource": "SUNALERT"}, {"url": "http://www.vupen.com/english/advisories/2008/0131", "name": "ADV-2008-0131", "tags": [], "refsource": "VUPEN"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/39629", "name": "solaris-libdevinfo-privilege-escalation(39629)", "tags": [], "refsource": "XF"}, {"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5211", "name": "oval:org.mitre.oval:def:5211", "tags": [], "refsource": "OVAL"}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "Unspecified vulnerability in libdevinfo in Sun Solaris 10 allows local users to access files and gain privileges via unknown vectors, related to login device permissions."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "en", "value": "NVD-CWE-noinfo"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2008-0242", "ASSIGNER": "cve@mitre.org"}}, "impact": {"baseMetricV2": {"cvssV2": {"version": "2.0", "baseScore": 7.2, "accessVector": "LOCAL", "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C", "authentication": "NONE", "integrityImpact": "COMPLETE", "accessComplexity": "LOW", "availabilityImpact": "COMPLETE", "confidentialityImpact": "COMPLETE"}, "severity": "HIGH", "impactScore": 10.0, "obtainAllPrivilege": true, "exploitabilityScore": 3.9, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}}, "publishedDate": "2008-01-12T02:46Z", "configurations": {"nodes": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:o:sun:solaris:10.0:*:sparc:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:sun:solaris:10.0:*:x86:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2017-09-29T01:30Z"}