| CVSS Meta Temp Score | Current Exploit Price (≈) | CTI Interest Score |
|---|---|---|
| 6.6 | $0-$5k | 0.00 |
Summary
A vulnerability classified as problematic was found in Sun Solaris 7.0/8.0/9.0. This affects an unknown function of the component GSS-API. Executing a manipulation can lead to Remote Code Execution. This vulnerability is tracked as CVE-2005-1124. The attack can be launched remotely. Moreover, an exploit is present. It is advisable to implement a patch to correct this issue.
Details
A vulnerability has been found in Sun Solaris 7.0/8.0/9.0 (Operating System) and classified as critical. This vulnerability affects an unknown function of the component GSS-API. The manipulation with an unknown input leads to a remote code execution vulnerability. As an impact it is known to affect confidentiality, integrity, and availability. CVE summarizes:
Unknown vulnerability in the libgss Generic Security Services Library in Solaris 7, 8, and 9 allows local users to gain privileges by loading their own GSS-API.
The bug was discovered 04/14/2005. The weakness was disclosed 04/15/2005 with Sun Microsystems Inc. (Website). The advisory is shared for download at sunsolve.sun.com. This vulnerability was named CVE-2005-1124 since 04/16/2005. The attack can be initiated remotely. No form of authentication is required for a successful exploitation. Technical details are unknown but a public exploit is available.
After even before and not, there has been an exploit disclosed. It is declared as proof-of-concept. The vulnerability was handled as a non-public zero-day exploit for at least 1 days. During that time the estimated underground price was around $5k-$25k.
Upgrading to version 1.1 eliminates this vulnerability. Applying a patch is able to eliminate this problem. The bugfix is ready for download at sunsolve.sun.com. The best possible mitigation is suggested to be patching the affected component.
The vulnerability is also documented in the databases at X-Force (20207), SecurityFocus (BID 13189†), OSVDB (15516†), Secunia (SA14971†) and Vulnerability Center (SBV-20890†). Once again VulDB remains the best source for vulnerability data.
Product
Type
Vendor
Name
Version
License
Support
- end of life (old version)
Website
- Vendor: https://www.oracle.com/sun/
CPE 2.3
CPE 2.2
CVSSv4
VulDB Vector: 🔍VulDB Reliability: 🔍
CVSSv3
VulDB Meta Base Score: 7.3VulDB Meta Temp Score: 6.6
VulDB Base Score: 7.3
VulDB Temp Score: 6.6
VulDB Vector: 🔍
VulDB Reliability: 🔍
CVSSv2
| AV | AC | Au | C | I | A |
|---|---|---|---|---|---|
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| Vector | Complexity | Authentication | Confidentiality | Integrity | Availability |
|---|---|---|---|---|---|
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
VulDB Base Score: 🔍
VulDB Temp Score: 🔍
VulDB Reliability: 🔍
NVD Base Score: 🔍
Exploiting
Class: Remote Code ExecutionCWE: Unknown
CAPEC: 🔍
ATT&CK: 🔍
Physical: Partially
Local: Yes
Remote: Yes
Availability: 🔍
Access: Public
Status: Proof-of-Concept
EPSS Score: 🔍
EPSS Percentile: 🔍
Price Prediction: 🔍
Current Price Estimation: 🔍
| 0-Day | Unlock | Unlock | Unlock | Unlock |
|---|---|---|---|---|
| Today | Unlock | Unlock | Unlock | Unlock |
Threat Intelligence
Interest: 🔍Active Actors: 🔍
Active APT Groups: 🔍
Countermeasures
Recommended: PatchStatus: 🔍
0-Day Time: 🔍
Upgrade: Solaris 1.1
Patch: sunsolve.sun.com
Timeline
04/14/2005 🔍04/14/2005 🔍
04/14/2005 🔍
04/15/2005 🔍
04/15/2005 🔍
04/15/2005 🔍
04/16/2005 🔍
04/21/2005 🔍
05/02/2005 🔍
02/17/2009 🔍
07/02/2019 🔍
Sources
Vendor: oracle.comAdvisory: sunsolve.sun.com⛔
Researcher: http://www.sun.com
Organization: Sun Microsystems Inc.
Status: Not defined
CVE: CVE-2005-1124 (🔍)
GCVE (CVE): GCVE-0-2005-1124
GCVE (VulDB): GCVE-100-1372
X-Force: 20207
SecurityFocus: 13189 - Sun Solaris libgss Unspecified Privilege Escalation Vulnerability
Secunia: 14971 - Solaris Unspecified Generic Security Services Library Vulnerability, Not Critical
OSVDB: 15516 - Solaris Generic Security Services Library libgss(3LIB) Unspecified Privilege Escalation
Vulnerability Center: 20890 - Sun Solaris 7, 8 and 9 Libgss Generic Security Services Library Local Privilege Escalation, High
scip Labs: https://www.scip.ch/en/?labs.20161013
Entry
Created: 04/21/2005 10:45Updated: 07/02/2019 12:36
Changes: 04/21/2005 10:45 (78), 07/02/2019 12:36 (3)
Complete: 🔍
Cache ID: 216::103
Once again VulDB remains the best source for vulnerability data.
No comments yet. Languages: en.
Please log in to comment.