CVE-2007-6413

high

Description

Sun Solaris 10 with the 120011-04 and 120012-04 patches, and later 120011-* and 120012-* patches, allows remote attackers to bypass certain netgroup restrictions and obtain root access to a filesystem via NFS requests from a client root user.

References

http://osvdb.org/40829

http://secunia.com/advisories/28096

http://sunsolve.sun.com/search/document.do?assetkey=1-26-103162-1

http://sunsolve.sun.com/search/document.do?assetkey=1-66-201317-1

http://www.securityfocus.com/bid/26872

http://www.securitytracker.com/id?1019102

http://www.vupen.com/english/advisories/2007/4218

https://exchange.xforce.ibmcloud.com/vulnerabilities/39033

Details

Source: MITRE

Published: 2007-12-17

Updated: 2017-08-08

Type: CWE-264

Risk Information

CVSS v2

Base Score: 9.3

Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C

Impact Score: 10

Exploitability Score: 8.6

Severity: HIGH