Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2008-4131Solaris vulnerability

CWE-2644 documents4 sources
Severity
7.2HIGHNVD
EPSS
0.2%
top 54.51%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
1
SUN Solaris
Timeline
PublishedSep 19
Latest updateMay 2

Description

Multiple unspecified vulnerabilities in Sun Solaris 8 through 10 allow local users to gain privileges via vectors related to handling of tags with (1) the -t option and (2) the :tag command in the (a) vi, (b) ex, (c) vedit, (d) view, and (e) edit programs.

CVSS vector

AV:L/AC:L/C:C/I:C/A:CExploitability: 3.9 | Impact: 10.0

Affected Packages1 packages

NVDsun/solaris10, 8, 9+2

Patches

Patch: sunsolve.sun.comPatch: sunsolve.sun.com

🔴Vulnerability Details

2
GHSA
GHSA-q4v5-rxjg-w95g: Multiple unspecified vulnerabilities in Sun Solaris 8 through 10 allow local users to gain privileges via vectors related to handling of tags with (1)2022-05-02
CVEList
CVE-2008-4131: Multiple unspecified vulnerabilities in Sun Solaris 8 through 10 allow local users to gain privileges via vectors related to handling of tags with (1)2008-09-19

💥Exploits & PoCs

1
Exploit-DB
Sun Solaris 9/10 Text Editors - Command Execution2008-09-17
CVE-2008-4131 — SUN Solaris vulnerability | cvebase