CVE Vulnerability

CVE-2008-7300

The labeled networking implementation in Solaris Trusted Extensions in Sun Solaris 10 and OpenSolaris snv_39 through snv_67, when a labeled zone is in the installed state, allows remote authenticated users to bypass a Mandatory Access Control (MAC) policy and obtain access to the global zone.

8.5 /10

CVSS v2.0 :

V3 Legend

Vector :

Exploitability : 6.8 / Impact : 10

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

Scope

References
Link Resource
http://www.securityfocus.com/bid/30602
http://secunia.com/advisories/31412 Vendor Advisory
http://sunsolve.sun.com/search/document.do?assetkey=1-26-240099-1
Configurations

Configuration 1

cpe:2.3:o:sun:opensolaris:build_snv_59:*:*:*:*:*:*:*
cpe:2.3:o:sun:opensolaris:build_snv_47:*:*:*:*:*:*:*
cpe:2.3:o:sun:opensolaris:build_snv_39:*:*:*:*:*:*:*
cpe:2.3:o:sun:opensolaris:build_snv_67:*:*:*:*:*:*:*
cpe:2.3:o:sun:sunos:5.10:*:*:*:*:*:*:*
cpe:2.3:o:sun:opensolaris:build_snv_64:*:*:*:*:*:*:*
Information

Published : 2011-10-05 02:56

Updated : 2012-05-14 04:00

NVD link : CVE-2008-7300

Mitre link : CVE-2008-7300

Products Affected

Sun

CWE
CWE-264