cnvd - cnvd-2017-15715

cnvd-2017-15715

Vulnerability from cnvd

Title: Oracle Solaris本地权限提升漏洞

Description:

Solaris原先是太阳微系统公司研制的类Unix操作系统，在Sun公司被Oracle并购后被称作Oracle Solaris。

Oracle Solaris存在本地权限提升漏洞，本地攻击者可利用该问题在受影响的系统上获得root权限。

Severity: 高

Patch Name: Oracle Solaris本地权限提升漏洞的补丁

Patch Description:

Solaris原先是太阳微系统公司研制的类Unix操作系统，在Sun公司被Oracle并购后被称作Oracle Solaris。

Oracle Solaris存在本地权限提升漏洞，本地攻击者可利用该问题在受影响的系统上获得root权限。目前，供应商发布了安全公告及相关补丁信息，修复了此漏洞。

Formal description:

目前厂商已经发布了升级补丁以修复此安全问题，补丁获取链接： http://www.oracle.com/technetwork/security-advisory/alert-cve-2017-3629-3757403.html

Reference: http://www.oracle.com/technetwork/security-advisory/alert-cve-2017-3629-verbose-3759273.html

Impacted products

Name
['Oracle Solaris 10', 'Oracle Solaris 11']

Show details on source website

JSON

To clipboard

{
  "bids": {
    "bid": {
      "bidNumber": "99150"
    }
  },
  "cves": {
    "cve": {
      "cveNumber": "CVE-2017-3629"
    }
  },
  "description": "Solaris\u539f\u5148\u662f\u592a\u9633\u5fae\u7cfb\u7edf\u516c\u53f8\u7814\u5236\u7684\u7c7bUnix\u64cd\u4f5c\u7cfb\u7edf\uff0c\u5728Sun\u516c\u53f8\u88abOracle\u5e76\u8d2d\u540e\u88ab\u79f0\u4f5cOracle Solaris\u3002\r\n\r\nOracle Solaris\u5b58\u5728\u672c\u5730\u6743\u9650\u63d0\u5347\u6f0f\u6d1e\uff0c\u672c\u5730\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u95ee\u9898\u5728\u53d7\u5f71\u54cd\u7684\u7cfb\u7edf\u4e0a\u83b7\u5f97root\u6743\u9650\u3002",
  "discovererName": "Qualys Research Lab",
  "formalWay": "\u76ee\u524d\u5382\u5546\u5df2\u7ecf\u53d1\u5e03\u4e86\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u6b64\u5b89\u5168\u95ee\u9898\uff0c\u8865\u4e01\u83b7\u53d6\u94fe\u63a5\uff1a\r\nhttp://www.oracle.com/technetwork/security-advisory/alert-cve-2017-3629-3757403.html",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2017-15715",
  "openTime": "2017-07-20",
  "patchDescription": "Solaris\u539f\u5148\u662f\u592a\u9633\u5fae\u7cfb\u7edf\u516c\u53f8\u7814\u5236\u7684\u7c7bUnix\u64cd\u4f5c\u7cfb\u7edf\uff0c\u5728Sun\u516c\u53f8\u88abOracle\u5e76\u8d2d\u540e\u88ab\u79f0\u4f5cOracle Solaris\u3002\r\n\r\nOracle Solaris\u5b58\u5728\u672c\u5730\u6743\u9650\u63d0\u5347\u6f0f\u6d1e\uff0c\u672c\u5730\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u95ee\u9898\u5728\u53d7\u5f71\u54cd\u7684\u7cfb\u7edf\u4e0a\u83b7\u5f97root\u6743\u9650\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Oracle Solaris\u672c\u5730\u6743\u9650\u63d0\u5347\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": [
      "Oracle Solaris  10",
      "Oracle Solaris  11"
    ]
  },
  "referenceLink": "http://www.oracle.com/technetwork/security-advisory/alert-cve-2017-3629-verbose-3759273.html",
  "serverity": "\u9ad8",
  "submitTime": "2017-06-21",
  "title": "Oracle Solaris\u672c\u5730\u6743\u9650\u63d0\u5347\u6f0f\u6d1e"
}

CVE-2017-3629 (GCVE-0-2017-3629)

Vulnerability from cvelistv5

Published

2017-06-22 13:00

Modified

2024-10-04 19:15

Severity ?

CWE

Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Solaris executes to compromise Solaris. Successful attacks of this vulnerability can result in takeover of Solaris.

Summary

Vulnerability in the Solaris component of Oracle Sun Systems Products Suite (subcomponent: Kernel). Supported versions that are affected are 10 and 11. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Solaris executes to compromise Solaris. Successful attacks of this vulnerability can result in takeover of Solaris. CVSS 3.0 Base Score 7.8 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H).

References

▼	URL	Tags
	https://www.exploit-db.com/exploits/45625/	exploit, x_refsource_EXPLOIT-DB
	http://www.oracle.com/technetwork/security-advisory/alert-cve-2017-3629-3757403.html	x_refsource_CONFIRM
	https://www.exploit-db.com/exploits/42270/	exploit, x_refsource_EXPLOIT-DB
	http://www.securityfocus.com/bid/99150	vdb-entry, x_refsource_BID

Impacted products

	Vendor	Product	Version
	Oracle Corporation	Solaris Operating System	Version: 10 Version: 11

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T14:30:58.530Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "45625",
            "tags": [
              "exploit",
              "x_refsource_EXPLOIT-DB",
              "x_transferred"
            ],
            "url": "https://www.exploit-db.com/exploits/45625/"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://www.oracle.com/technetwork/security-advisory/alert-cve-2017-3629-3757403.html"
          },
          {
            "name": "42270",
            "tags": [
              "exploit",
              "x_refsource_EXPLOIT-DB",
              "x_transferred"
            ],
            "url": "https://www.exploit-db.com/exploits/42270/"
          },
          {
            "name": "99150",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/99150"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2017-3629",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-10-04T16:21:08.870190Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-10-04T19:15:21.959Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Solaris Operating System",
          "vendor": "Oracle Corporation",
          "versions": [
            {
              "status": "affected",
              "version": "10"
            },
            {
              "status": "affected",
              "version": "11"
            }
          ]
        }
      ],
      "datePublic": "2017-06-19T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "Vulnerability in the Solaris component of Oracle Sun Systems Products Suite (subcomponent: Kernel). Supported versions that are affected are 10 and 11. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Solaris executes to compromise Solaris. Successful attacks of this vulnerability can result in takeover of Solaris. CVSS 3.0 Base Score 7.8 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H)."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Solaris executes to compromise Solaris.  Successful attacks of this vulnerability can result in takeover of Solaris.",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2018-10-18T09:57:01",
        "orgId": "43595867-4340-4103-b7a2-9a5208d29a85",
        "shortName": "oracle"
      },
      "references": [
        {
          "name": "45625",
          "tags": [
            "exploit",
            "x_refsource_EXPLOIT-DB"
          ],
          "url": "https://www.exploit-db.com/exploits/45625/"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://www.oracle.com/technetwork/security-advisory/alert-cve-2017-3629-3757403.html"
        },
        {
          "name": "42270",
          "tags": [
            "exploit",
            "x_refsource_EXPLOIT-DB"
          ],
          "url": "https://www.exploit-db.com/exploits/42270/"
        },
        {
          "name": "99150",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/99150"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "secalert_us@oracle.com",
          "ID": "CVE-2017-3629",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "Solaris Operating System",
                      "version": {
                        "version_data": [
                          {
                            "version_affected": "=",
                            "version_value": "10"
                          },
                          {
                            "version_affected": "=",
                            "version_value": "11"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "Oracle Corporation"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Vulnerability in the Solaris component of Oracle Sun Systems Products Suite (subcomponent: Kernel). Supported versions that are affected are 10 and 11. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Solaris executes to compromise Solaris. Successful attacks of this vulnerability can result in takeover of Solaris. CVSS 3.0 Base Score 7.8 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H)."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Solaris executes to compromise Solaris.  Successful attacks of this vulnerability can result in takeover of Solaris."
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "45625",
              "refsource": "EXPLOIT-DB",
              "url": "https://www.exploit-db.com/exploits/45625/"
            },
            {
              "name": "http://www.oracle.com/technetwork/security-advisory/alert-cve-2017-3629-3757403.html",
              "refsource": "CONFIRM",
              "url": "http://www.oracle.com/technetwork/security-advisory/alert-cve-2017-3629-3757403.html"
            },
            {
              "name": "42270",
              "refsource": "EXPLOIT-DB",
              "url": "https://www.exploit-db.com/exploits/42270/"
            },
            {
              "name": "99150",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/99150"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "43595867-4340-4103-b7a2-9a5208d29a85",
    "assignerShortName": "oracle",
    "cveId": "CVE-2017-3629",
    "datePublished": "2017-06-22T13:00:00",
    "dateReserved": "2016-12-06T00:00:00",
    "dateUpdated": "2024-10-04T19:15:21.959Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted