CyberSec.Space Logo
返回 CVE 瀏覽器

CVE-2009-3468

MEDIUM
6.9
CVSS Severity Score
EPSS Score0.1950%
EPSS Percentile20.83th
Published2009年9月29日
Last Modified2026年4月23日

Vulnerability Description

Multiple unspecified vulnerabilities in Common Desktop Environment (CDE) in Sun Solaris 10, when Trusted Extensions is enabled, allow local users to execute arbitrary commands or bypass the Mandatory Access Control (MAC) policy via unknown vectors, related to a menu typo and the Style Manager.

Affected Platforms (CPE)

💻
Sun

Solaris

= 10.0
💻
Sun

Solaris

= 10.0

References & Advisories

🔗 http://osvdb.org/58319
🔗 http://secunia.com/advisories/36822
🔗 http://sunsolve.sun.com/search/document.do?assetkey=1-21-126365-15-1
🔗 http://sunsolve.sun.com/search/document.do?assetkey=1-21-139620-01-1
🔗 http://sunsolve.sun.com/search/document.do?assetkey=1-66-267488-1
🔗 http://www.securityfocus.com/bid/36510
🔗 http://www.securitytracker.com/id?1022943
🔗 http://www.vupen.com/english/advisories/2009/2756

相關漏洞威脅

CVE-1999-056810.0

rpc.admind in Solaris is not running in a secure mode.

CVE-1999-097310.0

Buffer overflow in Solaris snoop program allows remote attackers to gain root privileges via a long domain name when snoop is runn...

CVE-2020-1487110.0

Vulnerability in the Oracle Solaris product of Oracle Systems (component: Pluggable authentication module). Supported versions tha...

CVE-1999-097410.0

Buffer overflow in Solaris snoop allows remote attackers to gain root privileges via GETQUOTA requests to the rpc.rquotad service.

CVE-2009-3468 Detail & Impact Analysis | CVSS 6.9 (MEDIUM) | Cyber-Sec.Space | Cyber-Sec.Space