CVE-2009-3706

EUVD-2009-3679
Unspecified vulnerability in the ZFS filesystem in Sun Solaris 10, and OpenSolaris snv_100 through snv_117, allows local users to bypass intended limitations of the file_chown_self privilege via certain uses of the chown system call.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
4.4 UNKNOWN
LOCAL
MEDIUM
AV:L/AC:M/Au:N/C:P/I:P/A:P
Base Score
CVSS 3.x
EPSS Score
Percentile: 14%
Affected Products (NVD)
VendorProductVersion
sunsolaris
10.0
𝑥
= Vulnerable software versions
References
http://secunia.com/advisories/37010
http://sunsolve.sun.com/search/document.do?assetkey=1-21-141444-09-1
http://sunsolve.sun.com/search/document.do?assetkey=1-66-265908-1
http://www.securityfocus.com/bid/36702
http://www.vupen.com/english/advisories/2009/2917
http://secunia.com/advisories/37010
http://sunsolve.sun.com/search/document.do?assetkey=1-21-141444-09-1
http://sunsolve.sun.com/search/document.do?assetkey=1-66-265908-1
http://www.securityfocus.com/bid/36702
http://www.vupen.com/english/advisories/2009/2917