CyberSec.Space Logo
Back to CVE Browser

CVE-2009-3468

MEDIUM
6.9
CVSS Severity Score
EPSS Score0.1950%
EPSS Percentile20.83th
PublishedSep 29, 2009
Last ModifiedApr 23, 2026

Vulnerability Description

Multiple unspecified vulnerabilities in Common Desktop Environment (CDE) in Sun Solaris 10, when Trusted Extensions is enabled, allow local users to execute arbitrary commands or bypass the Mandatory Access Control (MAC) policy via unknown vectors, related to a menu typo and the Style Manager.

Affected Platforms (CPE)

πŸ’»
Sun

Solaris

= 10.0
πŸ’»
Sun

Solaris

= 10.0

References & Advisories

πŸ”— http://osvdb.org/58319
πŸ”— http://secunia.com/advisories/36822
πŸ”— http://sunsolve.sun.com/search/document.do?assetkey=1-21-126365-15-1
πŸ”— http://sunsolve.sun.com/search/document.do?assetkey=1-21-139620-01-1
πŸ”— http://sunsolve.sun.com/search/document.do?assetkey=1-66-267488-1
πŸ”— http://www.securityfocus.com/bid/36510
πŸ”— http://www.securitytracker.com/id?1022943
πŸ”— http://www.vupen.com/english/advisories/2009/2756

Related Vulnerabilities

CVE-1999-056810.0

rpc.admind in Solaris is not running in a secure mode.

CVE-1999-097310.0

Buffer overflow in Solaris snoop program allows remote attackers to gain root privileges via a long domain name when snoop is runn...

CVE-2020-1487110.0

Vulnerability in the Oracle Solaris product of Oracle Systems (component: Pluggable authentication module). Supported versions tha...

CVE-1999-097410.0

Buffer overflow in Solaris snoop allows remote attackers to gain root privileges via GETQUOTA requests to the rpc.rquotad service.