ID CVE-2007-4070
Summary Unspecified vulnerability in Low Bandwidth X proxy (lbxproxy) on Sun Solaris 8 through 10 before 20070725 allows local users to read arbitrary files with root group ownership via unknown vectors.
References
Vulnerable Configurations
  • cpe:2.3:o:sun:solaris:10.0:-:sparc
    cpe:2.3:o:sun:solaris:10.0:-:sparc
  • cpe:2.3:o:sun:solaris:10.0:-:x86
    cpe:2.3:o:sun:solaris:10.0:-:x86
  • cpe:2.3:o:sun:solaris:8.0:-:sparc
    cpe:2.3:o:sun:solaris:8.0:-:sparc
  • cpe:2.3:o:sun:solaris:8.0:-:x86
    cpe:2.3:o:sun:solaris:8.0:-:x86
  • cpe:2.3:o:sun:solaris:9.0:-:sparc
    cpe:2.3:o:sun:solaris:9.0:-:sparc
  • cpe:2.3:o:sun:solaris:9.0:-:x86
    cpe:2.3:o:sun:solaris:9.0:-:x86
CVSS
Base: 4.9 (as of 31-07-2007 - 11:38)
Impact:
Exploitability:
Access
VectorComplexityAuthentication
LOCAL LOW NONE
Impact
ConfidentialityIntegrityAvailability
COMPLETE NONE NONE
nessus via4
  • NASL family Solaris Local Security Checks
    NASL id SOLARIS10_119059_46.NASL
    description X11 6.6.2: Xsun patch. This patch addresses IAVT 2009-T-0001.
    last seen 2018-09-01
    modified 2018-07-30
    plugin id 82536
    published 2015-04-02
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=82536
    title Solaris 10 (sparc) : 119059-46
  • NASL family Solaris Local Security Checks
    NASL id SOLARIS10_X86_119060-70.NASL
    description X11 6.6.2_x86: Xsun patch. Date this patch was last updated by Sun : Nov/12/15
    last seen 2018-10-31
    modified 2018-10-29
    plugin id 107805
    published 2018-03-12
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=107805
    title Solaris 10 (x86) : 119060-70
  • NASL family Solaris Local Security Checks
    NASL id SOLARIS10_X86_119060-68.NASL
    description X11 6.6.2_x86: Xsun patch. Date this patch was last updated by Sun : Nov/15/14
    last seen 2018-10-31
    modified 2018-10-29
    plugin id 107803
    published 2018-03-12
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=107803
    title Solaris 10 (x86) : 119060-68
  • NASL family Solaris Local Security Checks
    NASL id SOLARIS10_X86_119060-71.NASL
    description X11 6.6.2_x86: Xsun patch. Date this patch was last updated by Sun : Mar/09/17
    last seen 2019-01-19
    modified 2019-01-18
    plugin id 107806
    published 2018-03-12
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=107806
    title Solaris 10 (x86) : 119060-71
  • NASL family Solaris Local Security Checks
    NASL id SOLARIS10_X86_119060-69.NASL
    description X11 6.6.2_x86: Xsun patch. Date this patch was last updated by Sun : Jul/13/15
    last seen 2018-10-31
    modified 2018-10-29
    plugin id 107804
    published 2018-03-12
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=107804
    title Solaris 10 (x86) : 119060-69
  • NASL family Solaris Local Security Checks
    NASL id SOLARIS10_119059-69.NASL
    description X11 6.6.2: Xsun patch. Date this patch was last updated by Sun : Nov/15/14
    last seen 2018-10-27
    modified 2018-10-26
    plugin id 107301
    published 2018-03-12
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=107301
    title Solaris 10 (sparc) : 119059-69
  • NASL family Solaris Local Security Checks
    NASL id SOLARIS10_X86_119060_45.NASL
    description X11 6.6.2_x86: Xsun patch. This patch addresses IAVT 2009-T-0001.
    last seen 2018-09-02
    modified 2018-07-30
    plugin id 82537
    published 2015-04-02
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=82537
    title Solaris 10 (x86) : 119060-45
  • NASL family Solaris Local Security Checks
    NASL id SOLARIS10_X86_119060-65.NASL
    description X11 6.6.2_x86: Xsun patch. Date this patch was last updated by Sun : Mar/15/14
    last seen 2018-10-31
    modified 2018-10-29
    plugin id 107802
    published 2018-03-12
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=107802
    title Solaris 10 (x86) : 119060-65
  • NASL family Solaris Local Security Checks
    NASL id SOLARIS10_X86_119060.NASL
    description X11 6.6.2_x86: Xsun patch. Date this patch was last updated by Sun : Jun/15/17 This plugin has been deprecated and either replaced with individual 119060 patch-revision plugins, or deemed non-security related.
    last seen 2019-02-21
    modified 2018-07-30
    plugin id 22985
    published 2006-11-06
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=22985
    title Solaris 10 (x86) : 119060-72 (deprecated)
  • NASL family Solaris Local Security Checks
    NASL id SOLARIS10_119059-65.NASL
    description X11 6.6.2: Xsun patch. Date this patch was last updated by Sun : Sep/12/13
    last seen 2018-10-27
    modified 2018-10-26
    plugin id 107299
    published 2018-03-12
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=107299
    title Solaris 10 (sparc) : 119059-65
  • NASL family Solaris Local Security Checks
    NASL id SOLARIS10_X86_119060-64.NASL
    description X11 6.6.2_x86: Xsun patch. Date this patch was last updated by Sun : Sep/12/13
    last seen 2018-10-31
    modified 2018-10-29
    plugin id 107801
    published 2018-03-12
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=107801
    title Solaris 10 (x86) : 119060-64
  • NASL family Solaris Local Security Checks
    NASL id SOLARIS10_119059-71.NASL
    description X11 6.6.2: Xsun patch. Date this patch was last updated by Sun : Nov/12/15
    last seen 2018-10-27
    modified 2018-10-26
    plugin id 107303
    published 2018-03-12
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=107303
    title Solaris 10 (sparc) : 119059-71
  • NASL family Solaris Local Security Checks
    NASL id SOLARIS10_119059-66.NASL
    description X11 6.6.2: Xsun patch. Date this patch was last updated by Sun : Mar/15/14
    last seen 2018-10-27
    modified 2018-10-26
    plugin id 107300
    published 2018-03-12
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=107300
    title Solaris 10 (sparc) : 119059-66
  • NASL family Solaris Local Security Checks
    NASL id SOLARIS10_119059-70.NASL
    description X11 6.6.2: Xsun patch. Date this patch was last updated by Sun : Jul/13/15
    last seen 2018-10-27
    modified 2018-10-26
    plugin id 107302
    published 2018-03-12
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=107302
    title Solaris 10 (sparc) : 119059-70
  • NASL family Solaris Local Security Checks
    NASL id SOLARIS10_119059-72.NASL
    description X11 6.6.2: Xsun patch. Date this patch was last updated by Sun : Mar/09/17
    last seen 2019-01-19
    modified 2019-01-18
    plugin id 107304
    published 2018-03-12
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=107304
    title Solaris 10 (sparc) : 119059-72
  • NASL family Solaris Local Security Checks
    NASL id SOLARIS10_119059.NASL
    description X11 6.6.2: Xsun patch. Date this patch was last updated by Sun : Jun/15/17 This plugin has been deprecated and either replaced with individual 119059 patch-revision plugins, or deemed non-security related.
    last seen 2019-02-21
    modified 2018-07-30
    plugin id 22952
    published 2006-11-06
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=22952
    title Solaris 10 (sparc) : 119059-73 (deprecated)
oval via4
accepted 2007-09-06T09:13:34.971-04:00
class vulnerability
contributors
name Todd Dolinsky
organization Opsware, Inc.
definition_extensions
  • comment Solaris 8 (SPARC) is installed
    oval oval:org.mitre.oval:def:1539
  • comment Solaris 9 (SPARC) is installed
    oval oval:org.mitre.oval:def:1457
  • comment Solaris 10 (SPARC) is installed
    oval oval:org.mitre.oval:def:1440
  • comment Solaris 8 (x86) is installed
    oval oval:org.mitre.oval:def:2059
  • comment Solaris 9 (x86) is installed
    oval oval:org.mitre.oval:def:1683
  • comment Solaris 10 (x86) is installed
    oval oval:org.mitre.oval:def:1926
description Unspecified vulnerability in Low Bandwidth X proxy (lbxproxy) on Sun Solaris 8 through 10 before 20070725 allows local users to read arbitrary files with root group ownership via unknown vectors.
family unix
id oval:org.mitre.oval:def:8334
status accepted
submitted 2007-08-01T13:14:10.000-04:00
title A Security Vulnerability in lbxproxy(1) may Allow Unauthorized Read Access to Files
version 31
refmap via4
bid 25070
confirm http://support.avaya.com/elmodocs2/security/ASA-2007-339.htm
sectrack 1018462
secunia
  • 26220
  • 26344
sunalert 102948
vupen ADV-2007-2661
xf solaris-lbxproxy-information-disclosure(35607)
Last major update 07-03-2011 - 21:57
Published 30-07-2007 - 13:30
Last modified 28-09-2017 - 21:29
Back to Top