- 34,644
- 0
- 18 Дек 2022
- EDB-ID
- 23874
- Проверка EDB
-
- Пройдено
- Автор
- SINAN EREN
- Тип уязвимости
- LOCAL
- Платформа
- SOLARIS
- CVE
- cve-2004-2686
- Дата публикации
- 2004-03-23
Код:
source: https://www.securityfocus.com/bid/9962/info
It has been reported that Sun Solaris may be prone to a local privilege escalation vulnerability that may allow an attacker to gain root access to a vulnerable system. The issue exists due to insufficient sanitization of user-supplied data via the vfs_getvfssw() function in the Solaris kernel. An attacker can load a user-specified kernel module by using directory traversal sequences and employing the mount() or sysfs() system calls.
https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/23874.tar- Источник
- www.exploit-db.com
