CVE-2008-1369Sunos vulnerability

CWE-26416 documents4 sources
Severity
10.0CRITICALNVD
EPSS
2.4%
top 15.02%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
SUN Sunos
Timeline
PublishedMar 18
Latest updateMay 1

Description

A certain incorrect Sun Solaris 10 image on SPARC Enterprise T5120 and T5220 servers has /etc/default/login and /etc/ssh/sshd_config files that configure root logins in a manner unintended by the vendor, which allows remote attackers to gain privileges via unspecified vectors.

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages1 packages

NVDsun/sunos5.10

🔴Vulnerability Details

2
GHSA
GHSA-cw2x-fcmw-qj4f: A certain incorrect Sun Solaris 10 image on SPARC Enterprise T5120 and T5220 servers has /etc/default/login and /etc/ssh/sshd_config files that config2022-05-01
CVEList
CVE-2008-1369: A certain incorrect Sun Solaris 10 image on SPARC Enterprise T5120 and T5220 servers has /etc/default/login and /etc/ssh/sshd_config files that config2008-03-18

💥Exploits & PoCs

13
Exploit-DB
blogit! - SQL Injection / File Disclosure / Cross-Site Scripting2009-01-16
Exploit-DB
RevSense 1.0 - SQL Injection / Cross-Site Scripting2008-12-04
Exploit-DB
Yappa-ng - 'index.php?album' Cross-Site Scripting2008-12-03
Exploit-DB
Yappa-ng - Query String Cross-Site Scripting2008-12-03
Exploit-DB
Z1Exchange 1.0 - 'id' Cross-Site Scripting2008-12-02