Note: This is an archival copy of Security Sun Alert 255608 as previously published on http://sunsolve.sun.com.|
Latest version of this security advisory is available from http://support.oracle.com as Sun Alert 1020287.1.
Date of Resolved Release
A security vulnerability in OpenSolaris may allow a privileged user inside a non-global zone to execute arbitrary code within a global zone:
Local privileged users inside a non-global zone may be able to execute arbitrary code within a global zone if an mdb process within the global zone attaches to a non-global zone process. The code would be executed with the privileges of the user running mdb, which could potentially be root.
2. Contributing Factors
This issue can occur in the following releases:
Note 2: OpenSolaris distributions may include additional bug fixes above and beyond the build from which it was derived. To determine the base build of OpenSolaris, the following command can be used:
$ uname -v3. Symptoms
There are no predictable symptoms that would indicate the described issue has been exploited.
To avoid this issue, do not use mdb from the global zone to debug processes in the non-global zone.
This issue is addressed in the following releases:
Copyright 2000-2009 Sun Microsystems, Inc., 4150 Network Circle, Santa Clara, CA 95054 U.S.A. All rights reserved.
This solution has no attachment