Vulnerabilities
Misconfiguration
Runtime Security
Compliance
CVE Vulnerabilities

CVE-2008-3875

Published: Sep 02, 2008 | Modified: Sep 29, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
7.2 HIGH
AV:L/AC:L/Au:N/C:C/I:C/A:C
RedHat/V2
RedHat/V3
Ubuntu
Additional information
NVDhttps://nvd.nist.gov/vuln/detail/CVE-2008-3875
CWEhttps://cwe.mitre.org/data/definitions/264.html

The kernel in Sun Solaris 8 through 10 and OpenSolaris before snv_90 allows local users to bypass chroot, zones, and the Solaris Trusted Extensions multi-level security policy, and establish a covert communication channel, via unspecified vectors involving system calls.

Affected Software

Name Vendor Start Version End Version
Opensolaris Sun * build_snv_89 (including)
Opensolaris Sun build_snv_01 (including) build_snv_01 (including)
Opensolaris Sun build_snv_02 (including) build_snv_02 (including)
Opensolaris Sun build_snv_13 (including) build_snv_13 (including)
Opensolaris Sun build_snv_19 (including) build_snv_19 (including)
Opensolaris Sun build_snv_22 (including) build_snv_22 (including)
Opensolaris Sun build_snv_39 (including) build_snv_39 (including)
Opensolaris Sun build_snv_47 (including) build_snv_47 (including)
Opensolaris Sun build_snv_59 (including) build_snv_59 (including)
Opensolaris Sun build_snv_64 (including) build_snv_64 (including)
Opensolaris Sun build_snv_79b (including) build_snv_79b (including)
Opensolaris Sun build_snv_87 (including) build_snv_87 (including)
Opensolaris Sun build_snv_88 (including) build_snv_88 (including)
Solaris Sun 8 (including) 8 (including)
Solaris Sun 9 (including) 9 (including)
Solaris Sun 10 (including) 10 (including)

References

Aqua Security is the largest pure-play cloud native security company, providing customers the freedom to innovate and run their businesses with minimal friction. The Aqua Cloud Native Security Platform provides prevention, detection, and response automation across the entire application lifecycle to secure the build, secure cloud infrastructure and secure running workloads wherever they are deployed.
Copyright © 2024 Aqua Security Software Ltd.   Privacy Policy | Terms of Use