CVE-2010-0271Opensolaris vulnerability

CWE-2645 documents5 sources
Severity
4.6MEDIUMNVD
EPSS
0.1%
top 76.25%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
SUN Opensolaris
Timeline
PublishedJan 8
Latest updateMay 2

Description

hald in Sun OpenSolaris snv_51 through snv_130 does not have the proc_audit privilege during unspecified attempts to write to the auditing log, which makes it easier for physically proximate attackers to avoid detection of changes to the set of connected hardware devices supporting the Hardware Abstraction Layer (HAL) specification.

CVSS vector

AV:L/AC:L/C:P/I:P/A:PExploitability: 3.9 | Impact: 6.4

Affected Packages1 packages

NVDsun/opensolaris81 versions+80

🔴Vulnerability Details

2
GHSA
GHSA-r59v-2j67-g78p: hald in Sun OpenSolaris snv_51 through snv_130 does not have the proc_audit privilege during unspecified attempts to write to the auditing log, which2022-05-02
CVEList
CVE-2010-0271: hald in Sun OpenSolaris snv_51 through snv_130 does not have the proc_audit privilege during unspecified attempts to write to the auditing log, which2010-01-08

📋Vendor Advisories

1
Red Hat
libspice: Insufficient guest provided memory mappings boundaries validations2010-03-30

💬Community

1
Bugzilla
CVE-2010-0430 libspice: Insufficient guest provided memory mappings boundaries validations2010-02-26
CVE-2010-0271 — SUN Opensolaris vulnerability | cvebase