Skip Navigation

  • Home
  • Contact us
  • FAQ
  • Glossary
  • Public key
  • Sitemap
  • Cymraeg
  • What's new
CPNI - Centre for the Protection of National Infastructure

Advanced search

  • About CPNI
  • The threats
  • Security planning
  • Methods of attack
  • Protecting your assets
  • Products and services
    • CSIRTUK advisories
      • Advisories archive
    • General protective security publications
    • InfoSec briefings
    • InfoSec technical notes
    • InfoSec vulnerability disclosures
    • Good practice guidelines
    • Viewpoints
    • Information exchanges
    • Risk Management Delivery Group
  • Research
Home > Products and services > CSIRTUK advisories > Advisories archive > August 2005 > Sun - Security Vulnerability in Solaris 10 DHCP Clients (101897)

August 2005

Sun - Security Vulnerability in Solaris 10 DHCP Clients (101897)

ID: 00728
Ref: 675/05
Date: 24 August 2005:15:13:15
Version: 1
Title: Sun - Security Vulnerability in Solaris 10 DHCP Clients (101897)
Abstract:
Vendors affected: Sun
Applications affected: Sun

Title
=====
Sun - Security Vulnerability in Solaris 10 "DHCP" Clients (101897)


Detail
======

Sun have published an alert notification relating to a vulnerability in Solaris 10
DHCP clients. The following is an extract from the notification:

"A security vulnerability in the "/lib/svc/method/net-svc" script may allow a remote
privileged user the ability to execute arbitrary code with "root" privileges on a
"DHCP" client system if the remote user has access to a system within the network
or subnet which is used by the host for "DHCP" requests."

The alert notification can be viewed at the following URL:
http://sunsolve.sun.com/search/printfriendly.do?assetkey=1-26-101897-1



  • Accessibility |
  • Terms and conditions |
  • Privacy statement |
  • Data protection act |
  • Freedom of information |