6.2 - SUN-103150

Executive Summary

Summary
Title	Sun Alert 103150 A Security Vulnerability in unzip(1L) May Set Unintended Permissions on Extracted Files

Informations
Name	SUN-103150	First vendor Publication	2007-11-14
Vendor	Sun	Last vendor Modification	2008-01-02
Severity (Vendor)	N/A	Revision	N/A

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score	NA
Base Score	NA	Environmental Score	NA
impact SubScore	NA	Temporal Score	NA
Exploitabality Sub Score	NA

Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:L/AC:H/Au:N/C:C/I:C/A:C)
Cvss Base Score	6.2	Attack Range	Local
Cvss Impact Score	10	Attack Complexity	High
Cvss Expoit Score	1.9	Authentication	None Required
Calculate full CVSS 2.0 Vectors scores

Detail

Product: Solaris 9 Operating System, Solaris 10 Operating System, Solaris 8 Operating System

A security vulnerability in the unzip(1L) command may set unintended permissions on extracted files. This may allow a local unprivileged user to execute arbitrary code with the privileges of another user who runs the unzip command to extract files from a specially crafted unzip archive.

This issue is also referenced in the following document:

CVE-2005-0602 at http://www.security-database.com/detail.php?cve=CVE-2005-0602

Avoidance: Patch, Workaround

State: Resolved

First released: 14-Nov-2007

Sun Alert Link:http://sunsolve.sun.com/search/document.do?assetkey=1-26-103150-1

Original Source

Url : http://blogs.sun.com/security/entry/sun_alert_103150_a_security

CWE : Common Weakness Enumeration

%	Id	Name

CPE : Common Platform Enumeration

Type	Description	Count
Application	Info-Zip Unzip cpe:2.3:a:info-zip:unzip:5.50:::::::* cpe:2.3:a:info-zip:unzip:5.42:::::::* cpe:2.3:a:info-zip:unzip:5.41:::::::* cpe:2.3:a:info-zip:unzip:5.40:::::::* cpe:2.3:a:info-zip:unzip:5.32:::::::* cpe:2.3:a:info-zip:unzip:5.31:::::::* cpe:2.3:a:info-zip:unzip:5.3:::::::* cpe:2.3:a:info-zip:unzip:5.2:::::::* cpe:2.3:a:info-zip:unzip::::::::	9

Open Source Vulnerability Database (OSVDB)

Id	Description
14390	UnZip Extracted File setuid/setgid Weakness

Nessus® Vulnerability Scanner

Date	Description
2007-12-04	Name : The remote host is missing Sun Security Patch number 112951-15 File : solaris9_112951.nasl - Type : ACT_GATHER_INFO
2007-12-04	Name : The remote host is missing Sun Security Patch number 114194-12 File : solaris9_x86_114194.nasl - Type : ACT_GATHER_INFO
2006-01-15	Name : The remote Ubuntu host is missing a security-related patch. File : ubuntu_USN-159-1.nasl - Type : ACT_GATHER_INFO
2005-11-02	Name : The remote Mandrake Linux host is missing a security update. File : mandrake_MDKSA-2005-197.nasl - Type : ACT_GATHER_INFO
2004-07-12	Name : The remote host is missing Sun Security Patch number 108987-19 File : solaris8_108987.nasl - Type : ACT_GATHER_INFO
2004-07-12	Name : The remote host is missing Sun Security Patch number 108988-19 File : solaris8_x86_108988.nasl - Type : ACT_GATHER_INFO

Global Informations

Type	Count
CWE ID(s)	1
CPE ID(s)	9
osvdb(s)	1
Nessus® Exploit(s)	6

	Related
6.2	CVE-2005-0602
Info : listing not affected by your CVSS Env Score

Same Subject	Severity
Login to view 1 more Alert(s)

6.2 - SUN-103150

Executive Summary

Security-Database Scoring CVSS v3

Security-Database Scoring CVSS v2

Detail

Original Source

CWE : Common Weakness Enumeration

CPE : Common Platform Enumeration

Open Source Vulnerability Database (OSVDB)

Nessus® Vulnerability Scanner

Global Informations

Open Standards

Other Databases

COMPANY

STANDARDS

RECENT POSTS

MENU