CVE-2006-4439 - Secunia Advisories - Vulnerability Information

CVE Reference: CVE-2006-4439
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2006-4439

Description: pkgadd in Sun Solaris 10 before 20060825 installs files with insecure file and directory permissions (755 or 777) if the pkgmap file contains a "?" (question mark) in the mode field, which allows local users to modify arbitrary files or directories, a different vulnerability than CVE-2002-1871.

CVE Status: Candidate

References: SUNALERT http://sunsolve.sun.com/search/document.do?assetkey=1-26-102513-1 SAID Secunia Advisory: SA21633 Secunia Advisory: SA22992 OVAL http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:2010 OSVDB 28203 CONFIRM http://support.avaya.com/elmodocs2/security/ASA-2006-250.htm http://support.avaya.com/elmodocs2/security/ASA-2006-205.htm BID 19730

Return to the previous page.