CVE-2008-5699

Sun Solaris/OpenSolaris - Privilege Escalation

Title source: llm
STIX 2.1

Description

The name service cache daemon (nscd) in Sun Solaris 10 and OpenSolaris snv_50 through snv_104 does not properly check permissions, which allows local users to gain privileges and obtain sensitive information via unspecified vectors.

References (5)

Core 5
Core References
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/33218
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://securitytracker.com/id?1021477
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://osvdb.org/50934
Patch vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/32921
Vendor Advisory vendor-advisory x_refsource_sunalert
http://sunsolve.sun.com/search/document.do?assetkey=1-26-242006-1

Scores

EPSS 0.0004
EPSS Percentile 13.9%

Details

CWE
CWE-264
Status published
Products (25)
sun/opensolaris snv_50 (2 CPE variants)
sun/opensolaris snv_51 (2 CPE variants)
sun/opensolaris snv_52 (2 CPE variants)
sun/opensolaris snv_53 (2 CPE variants)
sun/opensolaris snv_54 (2 CPE variants)
sun/opensolaris snv_55 (2 CPE variants)
sun/opensolaris snv_56 (2 CPE variants)
sun/opensolaris snv_57 (2 CPE variants)
sun/opensolaris snv_58 (2 CPE variants)
sun/opensolaris snv_59 (2 CPE variants)
... and 15 more
Published Dec 22, 2008
Tracked Since Feb 18, 2026