Note: This is an archival copy of Security Sun Alert 228557 as previously published on http://sunsolve.sun.com.|
Latest version of this security advisory is available from http://support.oracle.com as Sun Alert 1017451.1.
Solaris 10 Operating System
Date of Resolved Release
A security vulnerability in the Netscape Portable Runtime (NSPR) API may allow a local unprivileged user to overwrite or create any file on the system which could lead to privilege escalation or a Denial of Service (DoS).
Additional information regarding this issue is available at:
Sun acknowledges with thanks, iDefense (http://www.idefense.com), for bringing this issue to our attention.
iDefense credits an anonymous researcher working with the iDefense Vulnerability Contributor Program for the discovery of this issue.
This issue can occur in the following releases:
Note: Solaris 8 and Solaris 9 are not impacted by this issue. However, third party software may use NSPR. This third party software would need to be setuid to be vulnerable. Please contact your Vendor.
There are no predictable symptoms that would show the described issue has been exploited, as it depends on which file is overwritten or created.
There is no workaround. Please see Resolution section below.
This issue is addressed in the following releases:
Note: Solaris 8 and Solaris 9 are not impacted by this issue. However, you can download the following patches to fix potential third party software vulnerabilities.
Note: NSPR is not available for Solaris 8 on the x86 platform.
This solution has no attachment