CVE-2012-0100 - OpenCVE

Unspecified vulnerability in Oracle Solaris 9, 10, and 11 Express allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Kerberos.

No CVSS v3.1

No CVSS v3.0

Access Vector Local

Access Complexity Low

Authentication Single

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

AV:L/AC:L/Au:S/C:C/I:C/A:C

Vendors & Products
CPE Configurations

Vendors	Products
Sun	Sunos

Configuration 1 [-]

OR	cpe:2.3:o:sun:sunos:5.9:::::::*
	cpe:2.3:o:sun:sunos:5.10:::::::*
	cpe:2.3:o:sun:sunos:5.11::express:::::

References

Link	Resource
http://osvdb.org/78421
http://secunia.com/advisories/48308
http://www.oracle.com/technetwork/topics/security/cpujan2012-366304.html	Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/72496

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: oracle

Published: 2012-01-18T22:00:00

Updated: 2018-01-05T18:57:01

Reserved: 2011-12-12T00:00:00

Link: CVE-2012-0100

JSON object: View

NVD Information

Status : Modified

Published: 2012-01-18T22:55:05.930

Modified: 2018-01-06T02:29:27.537

Link: CVE-2012-0100

JSON object: View

Redhat Information

No data.

CWE

NVD-CWE-noinfo

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2012-01-17T00:00:00", "descriptions": [{"lang": "en", "value": "Unspecified vulnerability in Oracle Solaris 9, 10, and 11 Express allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Kerberos."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2018-01-05T18:57:01", "orgId": "43595867-4340-4103-b7a2-9a5208d29a85", "shortName": "oracle"}, "references": [{"name": "48308", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/48308"}, {"name": "sun-solaris-cve20120100(72496)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/72496"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://www.oracle.com/technetwork/topics/security/cpujan2012-366304.html"}, {"name": "78421", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://osvdb.org/78421"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "secalert_us@oracle.com", "ID": "CVE-2012-0100", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Unspecified vulnerability in Oracle Solaris 9, 10, and 11 Express allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Kerberos."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "48308", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/48308"}, {"name": "sun-solaris-cve20120100(72496)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/72496"}, {"name": "http://www.oracle.com/technetwork/topics/security/cpujan2012-366304.html", "refsource": "CONFIRM", "url": "http://www.oracle.com/technetwork/topics/security/cpujan2012-366304.html"}, {"name": "78421", "refsource": "OSVDB", "url": "http://osvdb.org/78421"}]}}}}, "cveMetadata": {"assignerOrgId": "43595867-4340-4103-b7a2-9a5208d29a85", "assignerShortName": "oracle", "cveId": "CVE-2012-0100", "datePublished": "2012-01-18T22:00:00", "dateReserved": "2011-12-12T00:00:00", "dateUpdated": "2018-01-05T18:57:01", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:sun:sunos:5.9:*:*:*:*:*:*:*", "matchCriteriaId": "A1E585DC-FC74-4BB0-96B7-C00B6DB610DF", "vulnerable": true}, {"criteria": "cpe:2.3:o:sun:sunos:5.10:*:*:*:*:*:*:*", "matchCriteriaId": "E75493D0-F060-4CBA-8AB0-C4FE8B2A8C9B", "vulnerable": true}, {"criteria": "cpe:2.3:o:sun:sunos:5.11:*:express:*:*:*:*:*", "matchCriteriaId": "48FF14E0-E332-4BD4-827B-D5D13509FBEE", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "Unspecified vulnerability in Oracle Solaris 9, 10, and 11 Express allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Kerberos."}, {"lang": "es", "value": "Vulnerabilidad no especificada en Oracle Solaris v9, v10, v11 y Express permite a usuarios locales afectar a la confidencialidad, integridad y disponibilidad de los servicios a trav\u00e9s de vectores desconocidos relacionados con Kerberos."}], "id": "CVE-2012-0100", "lastModified": "2018-01-06T02:29:27.537", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "SINGLE", "availabilityImpact": "COMPLETE", "baseScore": 6.8, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:L/AC:L/Au:S/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 3.1, "impactScore": 10.0, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2012-01-18T22:55:05.930", "references": [{"source": "secalert_us@oracle.com", "url": "http://osvdb.org/78421"}, {"source": "secalert_us@oracle.com", "url": "http://secunia.com/advisories/48308"}, {"source": "secalert_us@oracle.com", "tags": ["Vendor Advisory"], "url": "http://www.oracle.com/technetwork/topics/security/cpujan2012-366304.html"}, {"source": "secalert_us@oracle.com", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/72496"}], "sourceIdentifier": "secalert_us@oracle.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-noinfo"}], "source": "nvd@nist.gov", "type": "Primary"}]}