Oracle Sun Solaris Multiple Vulnerabilities
RISK: Medium Risk
Multiple vulnerabilities have been identified in Sun Solaris, which can be exploited by malicious users to manipulate certain data or cause a DoS (Denial of Service) and by malicious people to disclose sensitive information, manipulate certain data, cause a DoS (Denial of Service), and compromise a vulnerable system.
1. Due to an unspecified error within the "Scheduler" component can be exploited to execute arbitrary code.
2. Due to an unspecified error within the "Live Upgrade" component can be exploited to execute arbitrary code.
3. Due to an unspecified error within the "Kernel/Disk Driver" component can be exploited to cause a DoS (Denial of Service).
4. Due to an unspecified error within the "SCSI enclosure services device driver" component can be exploited to manipulate certain data or cause a DoS (Denial of Service).
5. Due to an unspecified error within the "Device Drivers" component can be exploited by authenticated users to manipulate certain data or cause a DoS (Denial of Service).
6. Due to an unspecified error within the "USB" component can be exploited to disclose certain sensitive information.
Impact
- Denial of Service
- Remote Code Execution
- Information Disclosure
System / Technologies affected
- Sun Solaris 8
- Sun Solaris 9
- Sun Solaris 10
Solutions
Before installation of the software, please visit the software manufacturer web-site for more details.
- Apply Critical Patch Update October 2010 :
- http://www.oracle.com/technetwork/topics/security/cpuoct2010-175626.html
Vulnerability Identifier
Source
Related Link
Share with