Required CVE Record Information
Description
The Solaris 9 patches 113579-02 through 113579-05, and 114342-02 through 114342-05, prevent ypserv and ypxfrd from properly restricting access to secure NIS maps, which allows local users to use ypcat or ypmatch to extract the contents of a secure map such as passwd.adjunct.byname.
References 5 Total
- marc.info: 20040419 Solaris 9 patch 113579-03 introduces a NIS security bug mailing-list
- ciac.org: O-144 third-party-advisorygovernment-resource
- securityfocus.com: 10261 vdb-entry
- sunsolve.sun.com: 57554 vendor-advisory
- exchange.xforce.ibmcloud.com: solaris-nis-unauth-privileges(15908) vdb-entry
Updated:
This container includes required additional information provided by the CVE Program for this vulnerability.
References 5 Total
- marc.info: 20040419 Solaris 9 patch 113579-03 introduces a NIS security bug mailing-listx_transferred
- ciac.org: O-144 third-party-advisorygovernment-resourcex_transferred
- securityfocus.com: 10261 vdb-entryx_transferred
- sunsolve.sun.com: 57554 vendor-advisoryx_transferred
- exchange.xforce.ibmcloud.com: solaris-nis-unauth-privileges(15908) vdb-entryx_transferred