CVE-2004-1353 - Unknown vulnerability in LDAP on Sun Solaris 8 and 9, when using Role Based Access Control (RBAC), a

CVE-2004-1353

Summary

Unknown vulnerability in LDAP on Sun Solaris 8 and 9, when using Role Based Access Control (RBAC), allows local users to execute certain commands with additional privileges.

References

Vulnerable Configurations

cpe:2.3:o:sun:solaris:8.0:*:x86:*:*:*:*:*
cpe:2.3:o:sun:solaris:8.0:*:x86:*:*:*:*:*
cpe:2.3:o:sun:solaris:9.0:*:sparc:*:*:*:*:*
cpe:2.3:o:sun:solaris:9.0:*:sparc:*:*:*:*:*
cpe:2.3:o:sun:solaris:9.0:*:x86:*:*:*:*:*
cpe:2.3:o:sun:solaris:9.0:*:x86:*:*:*:*:*
cpe:2.3:o:sun:sunos:5.8:*:*:*:*:*:*:*
cpe:2.3:o:sun:sunos:5.8:*:*:*:*:*:*:*

CVSS

Base:	7.2 (as of 30-10-2018 - 16:25)
Impact:
Exploitability:

CWE

NVD-CWE-Other

CAPEC

Access

Vector	Complexity	Authentication
LOCAL	LOW	NONE

Impact

Confidentiality	Integrity	Availability
COMPLETE	COMPLETE	COMPLETE

cvss-vector via4

AV:L/AC:L/Au:N/C:C/I:C/A:C

oval via4

accepted

2005-10-12T05:49:00.000-04:00

class

vulnerability

contributors

name	Brian Soby
organization	The MITRE Corporation

description

Unknown vulnerability in LDAP on Sun Solaris 8 and 9, when using Role Based Access Control (RBAC), allows local users to execute certain commands with additional privileges.

family

unix

oval:org.mitre.oval:def:4834

status

accepted

submitted

2005-04-13T04:00:00.000-04:00

title

LDAP RBAC Privilege Escalation Vulnerability

version

refmap via4

auscert	ESB-2004.0661
bid	11459
ciac	P-017
osvdb	10939
sectrack	1011789
secunia	12873
sunalert	57657
xf	solaris-ldap-rbac-gain-priv(17757)

Last major update

30-10-2018 - 16:25

Published

19-10-2004 - 04:00

Last modified

30-10-2018 - 16:25