Solaris sadmind AUTH_SYS Credential Remote Command Execution
危険度: 緊急
CVE識別番号: CVE-2003-0722
情報公開日: 7 21, 2015
概要
The default installation of sadmind on Solaris uses weak authentication (AUTH_SYS), which allows local and remote attackers to spoof Solstice AdminSuite clients and gain root privileges via a certain sequence of RPC packets.
トレンドマイクロの対策
Apply associated Trend Micro DPI Rules.
対応方法
Trend Micro Deep Security DPI Rule Number: 1000434
Trend Micro Deep Security DPI Rule Name: 1000434 - Solaris sadmind AUTH_SYS Credential Remote Command Execution
影響を受けるソフトウェア
- Sun Solaris