CVE-2009-4211
First published: Fri Dec 04 2009(Updated: )
The U.S. Defense Information Systems Agency (DISA) Security Readiness Review (SRR) script for the Solaris x86 platform executes files in arbitrary directories as root for filenames equal to (1) java, (2) openssl, (3) php, (4) snort, (5) tshark, (6) vncserver, or (7) wireshark, which allows local users to gain privileges via a Trojan horse program.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Sun Solaris | ||
| Disa Srr For Solaris |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- collector/nvd-historical
- collector/nvd-index
- agent/references
- agent/severity
- agent/weakness
- agent/author
- agent/description
- agent/first-publish-date
- agent/last-modified-date
- agent/event
- agent/type
- agent/softwarecombine
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/sun
- canonical/sun solaris
- vendor/disa
- canonical/disa srr for solaris