Vulnerability Description
Multiple unspecified vulnerabilities in Common Desktop Environment (CDE) in Sun Solaris 10, when Trusted Extensions is enabled, allow local users to execute arbitrary commands or bypass the Mandatory Access Control (MAC) policy via unknown vectors, related to a menu typo and the Style Manager.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Sun | Solaris | 10.0 |
References
- http://osvdb.org/58319
- http://secunia.com/advisories/36822Vendor Advisory
- http://sunsolve.sun.com/search/document.do?assetkey=1-21-126365-15-1Patch
- http://sunsolve.sun.com/search/document.do?assetkey=1-21-139620-01-1Patch
- http://sunsolve.sun.com/search/document.do?assetkey=1-66-267488-1Vendor Advisory
- http://www.securityfocus.com/bid/36510
- http://www.securitytracker.com/id?1022943
- http://www.vupen.com/english/advisories/2009/2756Vendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/53461
- http://osvdb.org/58319
- http://secunia.com/advisories/36822Vendor Advisory
- http://sunsolve.sun.com/search/document.do?assetkey=1-21-126365-15-1Patch
- http://sunsolve.sun.com/search/document.do?assetkey=1-21-139620-01-1Patch
- http://sunsolve.sun.com/search/document.do?assetkey=1-66-267488-1Vendor Advisory
- http://www.securityfocus.com/bid/36510
FAQ
What is CVE-2009-3468?
CVE-2009-3468 is a vulnerability with a CVSS score of 6.9 (MEDIUM). Multiple unspecified vulnerabilities in Common Desktop Environment (CDE) in Sun Solaris 10, when Trusted Extensions is enabled, allow local users to execute arbitrary commands or bypass the Mandatory ...
How severe is CVE-2009-3468?
CVE-2009-3468 has been rated MEDIUM with a CVSS base score of 6.9/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2009-3468?
Check the references section above for vendor advisories and patch information. Affected products include: Sun Solaris.