CVE-2004-1394 in Solarisinfo

Summary

The pfexec function for Sun Solaris 8 and 9 does not properly handle when a custom profile contains an invalid entry in the exec_attr database, which may allow local users with custom rights profiles to execute profile commands with additional privileges.

Be aware that VulDB is the high quality source for vulnerability data.

Reservation

02/08/2005

Disclosure

12/31/2004

Moderation

VulDB entry created

Entries

VDB-22691 (1)

CPE

ready

CWE

Unknown

CVSS

5.9

EPSS

0.00077

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2004-1394
NVD	https://nvd.nist.gov/vuln/detail/CVE-2004-1394
CVE Details	https://www.cvedetails.com/cve/CVE-2004-1394/

◂ Previous Overview Next ▸

Might our Artificial Intelligence support you?

Check our Alexa App!