Local Vulnerability in Oracle Solaris 10 and OpenSolaris
CVE-2010-3503

Currently unrated

Key Information:

Vendor: Oracle
Status: Opensolaris; Solaris
Vendor: CVE Published:; 14 October 2010

What is CVE-2010-3503?

An unspecified vulnerability exists in Oracle Solaris 10 and OpenSolaris that enables local users to compromise confidentiality and integrity. This flaw is related to the su command and may be exploited through various unknown vectors. Proper measures should be taken to mitigate any potential risks associated with this vulnerability.

References

http://www.oracle.com/technetwork/topics/security/cpuoct2...

x_refsource_CONFIRM

http://www.us-cert.gov/cas/techalerts/TA10-287A.html

third-party-advisoryx_refsource_CERT

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 14, 2010
Vulnerability Reserved
Sep 20, 2010