Mandatory Access Control Bypass in Solaris Trusted Extensions by Sun Microsystems
CVE-2008-7300

Currently unrated

Key Information:

Vendor: Oracle
Status: Opensolaris; Sunos
Vendor: CVE Published:; 5 October 2011

Summary

The Solaris Trusted Extensions implementation in Sun Solaris 10 and OpenSolaris versions from snv_39 to snv_67 is vulnerable to a significant security oversight, allowing remote authenticated users to circumvent Mandatory Access Control (MAC) policies. This can lead to unauthorized access to the global zone, compromising the integrity of the system and potentially exposing sensitive data.

References

http://www.securityfocus.com/bid/30602

vdb-entryx_refsource_BID

http://secunia.com/advisories/31412

third-party-advisoryx_refsource_SECUNIA

http://sunsolve.sun.com/search/document.do?assetkey=1-26-...

vendor-advisoryx_refsource_SUNALERT

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Oct 5, 2011