CVE-2006-1782 — Solaris vulnerability

4 documents4 sources

Severity

2.1LOWNVD

EPSS

0.1%

top 78.29%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

SUN Solaris SUN Sunos

Timeline

PublishedApr 13

Latest updateMay 1

Description

Unspecified vulnerability in Solaris 8 and 9 allows local users to obtain the LDAP Directory Server root Distinguished Name (rootDN) password when a privileged user (1) runs idsconfig; or "insecurely" runs LDAP2 commands with the -w option, including (2) ldapadd, (3) ldapdelete, (4) ldapmodify, (5) ldapmodrdn, and (6) ldapsearch.

CVSS vector

AV:L/AC:L/C:P/I:N/A:NExploitability: 3.9 | Impact: 2.9

Affected Packages2 packages

▶NVDsun/solaris9.0

▶NVDsun/sunos5.8

🔴Vulnerability Details

GHSA

GHSA-4rrr-pc4c-p38g: Unspecified vulnerability in Solaris 8 and 9 allows local users to obtain the LDAP Directory Server root Distinguished Name (rootDN) password when a p↗2022-05-01

▶

CVEList

CVE-2006-1782: Unspecified vulnerability in Solaris 8 and 9 allows local users to obtain the LDAP Directory Server root Distinguished Name (rootDN) password when a p↗2006-04-13

▶

💥Exploits & PoCs

Exploit-DB

Empire 4.3.2 - 'strncat' Denial of Service↗2006-05-14

▶