ID CVE-2012-0570
Summary Unspecified vulnerability in Oracle Sun Solaris 8, 9, 10, and 11 allows local users to affect availability via unknown vectors related to Libraries/Libc.
References
Vulnerable Configurations
  • Sun SunOS (Solaris 8) 5.8
    cpe:2.3:o:sun:sunos:5.8
  • Sun SunOS (Solaris 9) 5.9
    cpe:2.3:o:sun:sunos:5.9
  • Sun SunOS (Solaris 10) 5.10
    cpe:2.3:o:sun:sunos:5.10
  • Sun SunOS (Solaris 11) 5.11
    cpe:2.3:o:sun:sunos:5.11
CVSS
Base: 2.1 (as of 16-11-2016 - 12:09)
Impact:
Exploitability:
Access
VectorComplexityAuthentication
LOCAL LOW NONE
Impact
ConfidentialityIntegrityAvailability
NONE NONE PARTIAL
nessus via4
  • NASL family Solaris Local Security Checks
    NASL id SOLARIS9_112874.NASL
    description SunOS 5.9: libc patch. Date this patch was last updated by Sun : Oct/29/10
    last seen 2018-09-02
    modified 2014-08-30
    plugin id 13518
    published 2004-07-12
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=13518
    title Solaris 9 (sparc) : 112874-47
  • NASL family Solaris Local Security Checks
    NASL id SOLARIS_APR2013_SRU4A.NASL
    description This Solaris system is missing necessary patches to address critical security updates : - Vulnerability in the Solaris component of Oracle and Sun Systems Products Suite (subcomponent: Utility). Supported versions that are affected are 8, 9, 10 and 11. Difficult to exploit vulnerability requiring logon to Operating System. Successful attack of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Solaris. (CVE-2013-0403) - Vulnerability in the Solaris component of Oracle and Sun Systems Products Suite (subcomponent: Libraries/Libc). Supported versions that are affected are 8, 9, 10 and 11. Easily exploitable vulnerability requiring logon to Operating System. Successful attack of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Solaris. (CVE-2012-0570)
    last seen 2019-02-21
    modified 2018-11-14
    plugin id 76805
    published 2014-07-26
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=76805
    title Oracle Solaris Critical Patch Update : apr2013_SRU4a
  • NASL family Solaris Local Security Checks
    NASL id SOLARIS10_147147.NASL
    description Vulnerability in the Solaris component of Oracle and Sun Systems Products Suite (subcomponent: Libraries/Libc). Supported versions that are affected are 8, 9, 10 and 11. Easily exploitable vulnerability requiring logon to Operating System. Successful attack of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Solaris. Vulnerability in the Solaris component of Oracle and Sun Systems Products Suite (subcomponent: Kernel/IPsec). The supported version that is affected is 10. Difficult to exploit vulnerability allows successful unauthenticated network attacks via TCP/IP. Successful attack of this vulnerability can result in unauthorized update, insert or delete access to some Solaris accessible data. Vulnerability in the Solaris component of Oracle and Sun Systems Products Suite (subcomponent: CPU performance counters drivers). The supported version that is affected is 10. Easily exploitable vulnerability requiring logon to Operating System plus additional login/authentication to component or subcomponent. Successful attack of this vulnerability can escalate attacker privileges resulting in unauthorized Operating System hang or frequently repeatable crash (complete DOS). Vulnerability in the Solaris component of Oracle and Sun Systems Products Suite (subcomponent: Remote Execution Service). Supported versions that are affected are 10 and 11. Difficult to exploit vulnerability requiring logon to Operating System. Successful attack of this vulnerability can result in unauthorized update, insert or delete access to some Solaris accessible data as well as read access to a subset of Solaris accessible data and ability to cause a partial denial of service (partial DOS) of Solaris. Vulnerability in the Solaris component of Oracle and Sun Systems Products Suite (subcomponent: Libraries/Libc). Supported versions that are affected are 8, 9, 10 and 11. Easily exploitable vulnerability requiring logon to Operating System. Successful attack of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of Solaris. This plugin has been deprecated and either replaced with individual 147147 patch-revision plugins, or deemed non-security related.
    last seen 2019-02-21
    modified 2018-07-30
    plugin id 64655
    published 2013-02-18
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=64655
    title Solaris 10 (sparc) : 147147-26 (deprecated)
  • NASL family Solaris Local Security Checks
    NASL id SOLARIS10_X86_147148.NASL
    description Vulnerability in the Solaris component of Oracle and Sun Systems Products Suite (subcomponent: Libraries/Libc). Supported versions that are affected are 8, 9, 10 and 11. Easily exploitable vulnerability requiring logon to Operating System. Successful attack of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Solaris. Vulnerability in the Solaris component of Oracle and Sun Systems Products Suite (subcomponent: Kernel/IPsec). The supported version that is affected is 10. Difficult to exploit vulnerability allows successful unauthenticated network attacks via TCP/IP. Successful attack of this vulnerability can result in unauthorized update, insert or delete access to some Solaris accessible data. Vulnerability in the Solaris component of Oracle and Sun Systems Products Suite (subcomponent: CPU performance counters drivers). The supported version that is affected is 10. Easily exploitable vulnerability requiring logon to Operating System plus additional login/authentication to component or subcomponent. Successful attack of this vulnerability can escalate attacker privileges resulting in unauthorized Operating System hang or frequently repeatable crash (complete DOS). Vulnerability in the Solaris component of Oracle and Sun Systems Products Suite (subcomponent: Remote Execution Service). Supported versions that are affected are 10 and 11. Difficult to exploit vulnerability requiring logon to Operating System. Successful attack of this vulnerability can result in unauthorized update, insert or delete access to some Solaris accessible data as well as read access to a subset of Solaris accessible data and ability to cause a partial denial of service (partial DOS) of Solaris. Vulnerability in the Solaris component of Oracle and Sun Systems Products Suite (subcomponent: Libraries/Libc). Supported versions that are affected are 8, 9, 10 and 11. Easily exploitable vulnerability requiring logon to Operating System. Successful attack of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of Solaris. This plugin has been deprecated and either replaced with individual 147148 patch-revision plugins, or deemed non-security related.
    last seen 2019-02-21
    modified 2018-07-30
    plugin id 64659
    published 2013-02-18
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=64659
    title Solaris 10 (x86) : 147148-26 (deprecated)
  • NASL family Solaris Local Security Checks
    NASL id SOLARIS9_X86_122301.NASL
    description SunOS 5.9_x86: Kernel Patch. Date this patch was last updated by Sun : Nov/03/11
    last seen 2018-09-02
    modified 2016-12-09
    plugin id 24861
    published 2007-03-18
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=24861
    title Solaris 9 (x86) : 122301-61
oval via4
accepted 2013-12-30T04:00:25.323-05:00
class vulnerability
contributors
name Merryl DMello
organization Hewlett-Packard
definition_extensions
  • comment Solaris 10 (SPARC) is installed
    oval oval:org.mitre.oval:def:1440
  • comment Solaris 10 (x86) is installed
    oval oval:org.mitre.oval:def:1926
description Unspecified vulnerability in Oracle Sun Solaris 8, 9, 10, and 11 allows local users to affect availability via unknown vectors related to Libraries/Libc.
family unix
id oval:org.mitre.oval:def:19326
status accepted
submitted 2013-11-20T11:43:28.000-05:00
title CRITICAL PATCH UPDATE APRIL 2013
version 35
refmap via4
bid 59241
confirm http://www.oracle.com/technetwork/topics/security/cpuapr2013-1899555.html
mandriva MDVSA-2013:150
Last major update 16-11-2016 - 13:59
Published 17-04-2013 - 08:14
Last modified 18-09-2017 - 21:34
Back to Top