CVE-2008-5699Opensolaris vulnerability

CWE-2643 documents3 sources
Severity
4.6MEDIUMNVD
EPSS
0.0%
top 86.41%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
SUN OpensolarisSUN Solaris
Timeline
PublishedDec 22
Latest updateMay 17

Description

The name service cache daemon (nscd) in Sun Solaris 10 and OpenSolaris snv_50 through snv_104 does not properly check permissions, which allows local users to gain privileges and obtain sensitive information via unspecified vectors.

CVSS vector

AV:L/AC:L/C:P/I:P/A:PExploitability: 3.9 | Impact: 6.4

Affected Packages2 packages

NVDsun/opensolaris55 versions+54
NVDsun/solaris10.0

Patches

Patch: www.securityfocus.comPatch: www.securityfocus.com

🔴Vulnerability Details

2
GHSA
GHSA-5gmv-x6h2-74wc: The name service cache daemon (nscd) in Sun Solaris 10 and OpenSolaris snv_50 through snv_104 does not properly check permissions, which allows local2022-05-17
CVEList
CVE-2008-5699: The name service cache daemon (nscd) in Sun Solaris 10 and OpenSolaris snv_50 through snv_104 does not properly check permissions, which allows local2008-12-22
CVE-2008-5699 — SUN Opensolaris vulnerability | cvebase