Vulnerability Description
hald in Sun OpenSolaris snv_51 through snv_130 does not have the proc_audit privilege during unspecified attempts to write to the auditing log, which makes it easier for physically proximate attackers to avoid detection of changes to the set of connected hardware devices supporting the Hardware Abstraction Layer (HAL) specification.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Sun | Opensolaris | snv_51 |
Related Weaknesses (CWE)
References
- http://sunsolve.sun.com/search/document.do?assetkey=1-66-274830-1Vendor Advisory
- http://www.securityfocus.com/bid/37656
- http://www.securitytracker.com/id?1023416
- http://www.vupen.com/english/advisories/2010/0076
- https://exchange.xforce.ibmcloud.com/vulnerabilities/55461
- http://sunsolve.sun.com/search/document.do?assetkey=1-66-274830-1Vendor Advisory
- http://www.securityfocus.com/bid/37656
- http://www.securitytracker.com/id?1023416
- http://www.vupen.com/english/advisories/2010/0076
- https://exchange.xforce.ibmcloud.com/vulnerabilities/55461
FAQ
What is CVE-2010-0271?
CVE-2010-0271 is a vulnerability with a CVSS score of 4.6 (MEDIUM). hald in Sun OpenSolaris snv_51 through snv_130 does not have the proc_audit privilege during unspecified attempts to write to the auditing log, which makes it easier for physically proximate attackers...
How severe is CVE-2010-0271?
CVE-2010-0271 has been rated MEDIUM with a CVSS base score of 4.6/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2010-0271?
Check the references section above for vendor advisories and patch information. Affected products include: Sun Opensolaris.