Описание
The Virtual Network Terminal Server daemon (vntsd) for Logical Domains (aka LDoms) in Sun Solaris 10, and OpenSolaris snv_41 through snv_108, on SPARC platforms does not check authorization for guest console access, which allows local control-domain users to gain guest-domain privileges via unknown vectors.
Ссылки
- Broken LinkVendor Advisory
- Broken LinkPatch
- Broken LinkPatchVendor Advisory
- Broken Link
- Broken LinkThird Party AdvisoryVDB Entry
- Broken LinkVendor Advisory
- Broken LinkPatch
- Broken LinkPatchVendor Advisory
- Broken Link
- Broken LinkThird Party AdvisoryVDB Entry
Уязвимые конфигурации
Конфигурация 1Версия от snv_41 (включая) до snv_108 (включая)
Одно из
cpe:2.3:o:oracle:opensolaris:*:*:*:*:*:*:sparc:*
cpe:2.3:o:oracle:solaris:10:*:*:*:*:*:sparc:*
EPSS
Процентиль: 38%
0.00163
Низкий
4.6 Medium
CVSS2
Дефекты
CWE-862
Связанные уязвимости
github
почти 4 года назад
The Virtual Network Terminal Server daemon (vntsd) for Logical Domains (aka LDoms) in Sun Solaris 10, and OpenSolaris snv_41 through snv_108, on SPARC platforms does not check authorization for guest console access, which allows local control-domain users to gain guest-domain privileges via unknown vectors.
EPSS
Процентиль: 38%
0.00163
Низкий
4.6 Medium
CVSS2
Дефекты
CWE-862