Local Vulnerability in Oracle Solaris 10 and OpenSolaris
CVE-2010-3503

Currently unrated

Key Information:

Vendor: Oracle
Status: Opensolaris; Solaris
Vendor: CVE Published:; 14 October 2010

Summary

An unspecified vulnerability exists in Oracle Solaris 10 and OpenSolaris that enables local users to compromise confidentiality and integrity. This flaw is related to the su command and may be exploited through various unknown vectors. Proper measures should be taken to mitigate any potential risks associated with this vulnerability.

References

http://www.oracle.com/technetwork/topics/security/cpuoct2...

x_refsource_CONFIRM

http://www.us-cert.gov/cas/techalerts/TA10-287A.html

third-party-advisoryx_refsource_CERT

Timeline

Vulnerability published
Oct 14, 2010
Vulnerability Reserved
Sep 20, 2010