ID CVE-2014-4259
Summary Unspecified vulnerability in the Solaris Cluster component in Oracle Sun Systems Products Suite 3.3 and 4.1 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors related to System management.
References
Vulnerable Configurations
  • Oracle and Sun Systems Product Suite 3.3
    cpe:2.3:a:oracle:oracle_and_sun_systems_product_suite:3.3
  • Oracle and Sun Systems Product Suite 4.1
    cpe:2.3:a:oracle:oracle_and_sun_systems_product_suite:4.1
CVSS
Base: 9.0 (as of 29-10-2015 - 10:17)
Impact:
Exploitability:
Access
VectorComplexityAuthentication
NETWORK LOW SINGLE_INSTANCE
Impact
ConfidentialityIntegrityAvailability
COMPLETE COMPLETE COMPLETE
nessus via4
  • NASL family Solaris Local Security Checks
    NASL id SOLARIS10_X86_145334.NASL
    description Vulnerability in the Solaris Cluster component of Oracle Sun Systems Products Suite (subcomponent: System management). Supported versions that are affected are 3.3 and 4.1. Easily exploitable vulnerability allows successful authenticated network attacks via TCP/IP. Successful attack of this vulnerability can result in unauthorized Operating System takeover including arbitrary code execution. Vulnerability in the Solaris Cluster component of Oracle Sun Systems Products Suite (subcomponent: System management). Supported versions that are affected are 3.3 and 4.1. Easily exploitable vulnerability requiring logon to Operating System plus additional, multiple logins to components. Successful attack of this vulnerability can escalate attacker privileges resulting in unauthorized Operating System takeover including arbitrary code execution. This plugin has been deprecated and either replaced with individual 145334 patch-revision plugins, or deemed non-security related.
    last seen 2019-02-21
    modified 2018-07-30
    plugin id 71706
    published 2013-12-28
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=71706
    title Solaris 10 (x86) : 145334-39 (deprecated)
  • NASL family Solaris Local Security Checks
    NASL id SOLARIS10_X86_145334-34.NASL
    description Vulnerability in the Solaris Cluster component of Oracle Sun Systems Products Suite (subcomponent: System management). Supported versions that are affected are 3.3 and 4.1. Easily exploitable vulnerability allows successful authenticated network attacks via TCP/IP. Successful attack of this vulnerability can result in unauthorized Operating System takeover including arbitrary code execution. Vulnerability in the Solaris Cluster component of Oracle Sun Systems Products Suite (subcomponent: System management). Supported versions that are affected are 3.3 and 4.1. Easily exploitable vulnerability requiring logon to Operating System plus additional, multiple logins to components. Successful attack of this vulnerability can escalate attacker privileges resulting in unauthorized Operating System takeover including arbitrary code execution.
    last seen 2019-02-21
    modified 2018-10-29
    plugin id 108076
    published 2018-03-12
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=108076
    title Solaris 10 (x86) : 145334-34
  • NASL family Solaris Local Security Checks
    NASL id SOLARIS10_X86_145334-33.NASL
    description Vulnerability in the Solaris Cluster component of Oracle Sun Systems Products Suite (subcomponent: System management). Supported versions that are affected are 3.3 and 4.1. Easily exploitable vulnerability allows successful authenticated network attacks via TCP/IP. Successful attack of this vulnerability can result in unauthorized Operating System takeover including arbitrary code execution. Vulnerability in the Solaris Cluster component of Oracle Sun Systems Products Suite (subcomponent: System management). Supported versions that are affected are 3.3 and 4.1. Easily exploitable vulnerability requiring logon to Operating System plus additional, multiple logins to components. Successful attack of this vulnerability can escalate attacker privileges resulting in unauthorized Operating System takeover including arbitrary code execution.
    last seen 2019-02-21
    modified 2018-10-29
    plugin id 108075
    published 2018-03-12
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=108075
    title Solaris 10 (x86) : 145334-33
refmap via4
confirm http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html
sectrack 1031583
the hacker news via4
id THN:B5218A4B6680543EFCCADB0F38E960BF
last seen 2018-01-27
modified 2015-01-21
published 2015-01-21
reporter Mohit Kumar
source https://thehackernews.com/2015/01/java-update-patch-vulnerability.html
title Oracle releases 169 Updates, Including 19 Patches for JAVA Vulnerabilities
Last major update 06-12-2016 - 22:00
Published 21-01-2015 - 09:59
Back to Top