ID CVE-2007-3471
Summary Buffer overflow in the dtsession Common Desktop Environment (CDE) Session Manager in Sun Solaris 8, 9, and 10 allows local users to execute arbitrary code via unspecified vectors.
References
Vulnerable Configurations
  • cpe:2.3:o:sun:solaris:10.0:-:sparc
    cpe:2.3:o:sun:solaris:10.0:-:sparc
  • cpe:2.3:o:sun:solaris:10.0:-:x86
    cpe:2.3:o:sun:solaris:10.0:-:x86
  • cpe:2.3:o:sun:solaris:8.0:-:sparc
    cpe:2.3:o:sun:solaris:8.0:-:sparc
  • cpe:2.3:o:sun:solaris:8.0:-:x86
    cpe:2.3:o:sun:solaris:8.0:-:x86
  • cpe:2.3:o:sun:solaris:9.0:-:sparc
    cpe:2.3:o:sun:solaris:9.0:-:sparc
  • cpe:2.3:o:sun:solaris:9.0:-:x86
    cpe:2.3:o:sun:solaris:9.0:-:x86
CVSS
Base: 7.2 (as of 01-07-2007 - 17:26)
Impact:
Exploitability:
Access
VectorComplexityAuthentication
LOCAL LOW NONE
Impact
ConfidentialityIntegrityAvailability
COMPLETE COMPLETE COMPLETE
nessus via4
  • NASL family Solaris Local Security Checks
    NASL id SOLARIS10_X86_125280.NASL
    description CDE1.6_x86: dtsession patch. Date this patch was last updated by Sun : Nov/16/07 This plugin has been deprecated and either replaced with individual 125280 patch-revision plugins, or deemed non-security related.
    last seen 2019-01-16
    modified 2018-07-30
    plugin id 25647
    published 2007-07-02
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=25647
    title Solaris 10 (x86) : 125280-05 (deprecated)
  • NASL family Solaris Local Security Checks
    NASL id SOLARIS8_X86_109355.NASL
    description CDE 1.4_x86: dtsession patch. Date this patch was last updated by Sun : Jun/25/07
    last seen 2018-09-01
    modified 2014-08-30
    plugin id 13431
    published 2004-07-12
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=13431
    title Solaris 8 (x86) : 109355-25
  • NASL family Solaris Local Security Checks
    NASL id SOLARIS9_113240.NASL
    description CDE 1.5: dtsession patch. Date this patch was last updated by Sun : Jun/20/07
    last seen 2018-09-01
    modified 2014-08-30
    plugin id 13531
    published 2004-07-12
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=13531
    title Solaris 9 (sparc) : 113240-13
  • NASL family Solaris Local Security Checks
    NASL id SOLARIS10_125279.NASL
    description CDE1.6: dtsession patch. Date this patch was last updated by Sun : Nov/27/07 This plugin has been deprecated and either replaced with individual 125279 patch-revision plugins, or deemed non-security related.
    last seen 2019-01-16
    modified 2018-07-30
    plugin id 25644
    published 2007-07-02
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=25644
    title Solaris 10 (sparc) : 125279-05 (deprecated)
  • NASL family Solaris Local Security Checks
    NASL id SOLARIS8_109354.NASL
    description CDE 1.4: dtsession patch. Date this patch was last updated by Sun : Jun/25/07
    last seen 2018-09-02
    modified 2014-08-30
    plugin id 13323
    published 2004-07-12
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=13323
    title Solaris 8 (sparc) : 109354-26
  • NASL family Solaris Local Security Checks
    NASL id SOLARIS9_X86_113241.NASL
    description CDE 1.5_x86: dtsession patch. Date this patch was last updated by Sun : Jun/20/07
    last seen 2018-09-01
    modified 2014-08-30
    plugin id 13581
    published 2004-07-12
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=13581
    title Solaris 9 (x86) : 113241-13
oval via4
accepted 2007-08-02T14:47:15.305-04:00
class vulnerability
contributors
name Yuzheng Zhou
organization Opsware, Inc.
definition_extensions
  • comment Solaris 8 (SPARC) is installed
    oval oval:org.mitre.oval:def:1539
  • comment Solaris 8 (x86) is installed
    oval oval:org.mitre.oval:def:2059
  • comment Solaris 9 (SPARC) is installed
    oval oval:org.mitre.oval:def:1457
  • comment Solaris 9 (x86) is installed
    oval oval:org.mitre.oval:def:1683
  • comment Solaris 10 (SPARC) is installed
    oval oval:org.mitre.oval:def:1440
  • comment Solaris 10 (x86) is installed
    oval oval:org.mitre.oval:def:1926
description Buffer overflow in the dtsession Common Desktop Environment (CDE) Session Manager in Sun Solaris 8, 9, and 10 allows local users to execute arbitrary code via unspecified vectors.
family unix
id oval:org.mitre.oval:def:2015
status accepted
submitted 2007-07-03T09:00:00.000-04:00
title dtsession(1X) Contains a Buffer Overflow Vulnerability
version 31
refmap via4
bid 24687
confirm http://support.avaya.com/elmodocs2/security/ASA-2007-310.htm
osvdb 36608
secunia
  • 25876
  • 26136
sunalert 102954
vupen ADV-2007-2369
xf solaris-dtsession1x-bo(35127)
Last major update 07-03-2011 - 21:56
Published 28-06-2007 - 14:30
Last modified 28-09-2017 - 21:29
Back to Top