Nortel Response to Sun Alert 103162 - Solaris 10 Kernel Patches May Allow Privileged Access
| Description: |
reference: http://sunsolve.sun.com/search/document.do?assetkey=1-26-103162-1 Before taking any action please ensure that you are viewing the latest official version of this security advisory by referencing http://www.nortel.com/securityadvisories Sun Microsystems has recently issued document 201317 (formerly Sun Alert 103162) - Solaris 10 Kernel Patches May Allow Privileged Remote Users to Gain Root Access to Files Shared by NFS Servers. Sun has also provided fixes for the issue. Some Nortel products contain this software as a component and thus are potentially affected by the vulnerabilities addressed. This bulletin provides a multi-product consolidated response for the Nortel products which are potentially affected. This bulletin addresses the following potential vulnerability: A security vulnerability exists for Solaris 10 systems with kernel patches 120011-04 or later (SPARC) and 120012-04 or later (x86) which are configured as NFS servers and grant root user access to remote clients. This vulnerability may allow root users on remote clients which are not authorized to access the shared file systems as root to also have root access to files shared by the NFS server. |
| Type: |
Security Advisories |
| Number: |
2008008591, Rev 1 |
| Status: |
Retired |
| Date: |
2008-06-03 |
