CVE-2007-4395

Severity

76%

Complexity

49%

Confidentiality

165%

Successful exploitation requires that the attacker knows the password for certain affected roles.

Multiple unspecified vulnerabilities in the Role Based Access Control (RBAC) functionality in Sun Solaris 8 allow remote attackers who know the password for a role to gain privileges via that role.

Successful exploitation requires that the attacker knows the password for certain affected roles.

CVSS 2.0 Base Score 7.6. CVSS Attack Vector: network. CVSS Attack Complexity: high. CVSS Vector: (AV:N/AC:H/Au:N/C:C/I:C/A:C).

Overview

First reported 17 years ago

2007-08-17 23:17:00

Last updated 6 years ago

2018-10-30 16:25:00

Affected Software

Sun SunOS (Solaris 8) 5.8

5.8

References

36614

26494

Patch, Vendor Advisory

103029

Patch, Vendor Advisory

25353

Patch

1018582

ADV-2007-2916

Vendor Advisory

solaris-rbac-unauthorized-access(36080)

oval:org.mitre.oval:def:1941

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.