Oval Definition:oval:org.mitre.oval:def:5792
Revision Date:2009-02-16Version:17
Title:A Security Vulnerability in the Management of Solaris Kerberos (see kerberos(5)) may Lead to a User Denial of Service (DoS) Attack
Description:The Kerberos credential renewal feature in Sun Solaris 8, 9, and 10, and OpenSolaris build snv_01 through snv_104, allows local users to cause a denial of service (authentication failure) via unspecified vectors related to incorrect cache file permissions, and lack of credential storage by the store_cred function in pam_krb5.
Family:unixClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2008-5690
Platform(s):Sun Solaris 10
Sun Solaris 8
Sun Solaris 9
Product(s):
Definition Synopsis
  • Solaris 8 (SPARC) meets Sun Alert 244866
  • Solaris 8 (SPARC) is installed
  • AND NOT Patch 109805-19 or later installed
  • OR Solaris 9 (SPARC) meets Sun Alert 244866
  • Solaris 9 (SPARC) is installed
  • AND NOT Patch 112908-33 or later installed
  • OR Solaris 10 (SPARC) meets Sun Alert 244866
  • Solaris 10 (SPARC) is installed
  • AND NOT Patch 139478-01 or later installed
  • OR Solaris 8 (x86) meets Sun Alert 244866
  • Solaris 8 (x86) is installed
  • AND NOT Patch 109806-19 or later installed
  • OR Solaris 9 (x86) meets Sun Alert 244866
  • Solaris 9 (x86) is installed
  • AND NOT Patch 115168-18 or later installed
  • OR Solaris 10 (x86) meets Sun Alert 244866
  • Solaris 10 (x86) is installed
  • AND NOT Patch 139479-01 or later installed
    • BACK