DISA Security Readiness Review Scripts for Solaris Local Privilege Escalation

high Nessus Plugin ID 69934

Language:

Synopsis

The remote host is affected by a local privilege escalation vulnerability.

Description

The remote host has a copy of the DISA Security Readiness Review (SRR) Scripts for Solaris that is affected by a local privilege escalation vulnerability. The vulnerability could be leveraged to execute files in arbitrary directories with root privileges, as long as such files are named 'java', 'openssl', 'php', 'snort', 'tshark', 'vncserver', or 'wireshark'.

Solution

Upgrade to a version of the SRR scripts dated December 18, 2009 or later.

Plugin Details

Severity: High

ID: 69934

File Name: disa_unix_srr_2009-A-0136.nasl

Version: 1.6

Type: local

Agent: windows, macosx, unix

Family: Misc.

Published: 9/17/2013

Updated: 4/11/2022

Configuration: Enable thorough checks

Supported Sensors: Nessus Agent, Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 6.7

CVSS v2

Risk Factor: High

Base Score: 9.3

Temporal Score: 7.3

Vector: CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C

CVSS Score Source: CVE-2009-4211

Vulnerability Information

CPE: cpe:/a:disa:srr_for_solaris

Required KB Items: DISA_SRR/Installed

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 9/18/2009

Vulnerability Publication Date: 12/2/2009

Reference Information

CVE: CVE-2009-4211

BID: 37200

CWE: 264

CERT: 433821

IAVA: 2009-A-0136

Detections

Analytics