Sun Security Blog
Security
|
23 May 2006
Sun Alert 102356 Security Vulnerability in the Solaris 9 in.ftpd(1M) Server May Allow Unauthorized Directory Access
Product: Solaris 9 Operating System A security vulnerability in the Solaris 9 in.ftpd(1M) server may allow local or remote unprivileged users to access directories outside of their home directory or to log in with their $HOME directory set to "/" (slash). This issue is also described in CAN-2004-0148 at http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0148 Avoidance: Workaround, Patch State: Resolved First released: 18-May-2006
Permalink
|
Comments [0]
Product: Solaris 10 Operating System The Xorg X server (see Xorg(1)) is one of the X Window System display servers available on the Solaris x86 platform. A buffer overflow in the X Render extension may allow an unprivileged local or remote user who is a client of the Xorg X server the ability to execute arbitrary code with the privileges of the Xorg server. The Xorg X server runs with root privileges on Solaris. This issue is described in the following documents: Avoidance: Workaround, Patch State: Resolved First released: 04-May-2006
Permalink
|
Comments [0]
Product: Sun N1 System Manager A security vulnerability in Sun N1 System Manager 1.1 may allow a local unprivileged user the ability to access internal System Manager passwords. Avoidance: Patch, Workaround State: Resolved First released: 17-May-2006
Permalink
|
Comments [0]
16 May 2006
Sun Alert 102345 Security Vulnerability in Sun Java System Directory Server Related to Initial Installation Data
Product: Sun Java System Directory Server 5.2 A security vulnerability in Sun Java System Directory Server 5.2 may allow a local or remote user to gain unauthorized administrative access to the Directory Server by logging in to the Directory Server console. Avoidance: Workaround State: Resolved First released: 16-May-2006
Permalink
|
Comments [0]
08 May 2006
Sun Alert 102246 A Security Vulnerability in the "libike" Library May Potentially Cause a Denial of Service to the in.iked(1M) Daemon
Product: Solaris 9 Operating System, Solaris 10 Operating System It may be possible for a remote privileged user to cause the in.iked(1M) daemon to crash or cause in.iked to send invalid data to a peer system, potentially causing that system's in.iked daemon to crash, when an IKE exchange with a malformed payload is attempted. If in.iked crashes, then IKE can not be used to exchange keying information for IPsec, thus causing a Denial of Service (DoS) to IPsec protected network traffic. This issue is revealed by the test suite described in NISCC vulnerability #273756, which is available at http://www.uniras.gov.uk/niscc/docs/br-20051114-01013.html?lang=en Avoidance: Patch State: Resolved First released: 08-May-2006
Permalink
|
Comments [0]
Sun is publishing this note on the impact of the FPU Information Disclosure Vulnerability on the Solaris Operating System, as we anticipate a number of potential customer queries regarding this vulnerability that affects multiple Unix vendors. The Solaris Operating System is not impacted by this vulnerability. Support for AMD64 processors was introduced with the release of Solaris 10. Solaris 10 implements methods to clear all x87 exception pointers (ip, dp, opcode) and initialize them to benign values on every context switch. Furthermore, the x87 state is saved/restored only for x87 users. This issue is described further here: http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1056 Permalink | Comments [0] |
|
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
