Boletines de Vulnerabilidades

int(2283)

Boletines de Vulnerabilidades

Vulnerabilidad en Sun Grid Engine
Clasificación de la vulnerabilidad
Propiedad	Valor
Nivel de Confianza	Oficial
Impacto	Compromiso Root
Dificultad	Experto
Requerimientos del atacante	Acceso remoto con cuenta
Información sobre el sistema
Propiedad	Valor
Fabricant afectat	UNIX
Software afectado	Sun N1 Grid Engine 6 Sun Grid Engine 5.3
Descripción
Se ha descubierto una vulnerabilidad en Sun Grid Engine 5.3 y Sun N1 Grid Engine 6. La vulnerabilidad reside en el binario rsh. La explotación de esta vulnerabilidad podría permitir a un atacante local obtener privilegios de root.
Solución
Actualización de software Sun Grid Engine Solaris / SPARC Sun Grid Engine 5.3 (32-bit Solaris) - patch 113136-06 http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21-113136-06-1 Sun Grid Engine 5.3 (64-bit Solaris) - patch 113137-06 http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21-113137-06-1 Sun Grid Engine 5.3 (32-bit Solaris) NON-Solaris Package format - patch 113849-06 http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21-113849-06-1 Sun Grid Engine 5.3 (64-bit Solaris) NON-Solaris Package format - patch 113850-06 http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21-113850-06-1 Sun Grid Engine Enterprise Edition 5.3 (32-bit Solaris) - patch 113139-07 http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21-113139-07-1 Sun Grid Engine Enterprise Edition 5.3 (64-bit Solaris) - patch 113140-07 http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21-113140-07-1 Sun Grid Engine Enterprise Edition 5.3 (32-bit Solaris) NON-Solaris Package format - patch 113855-06 http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21-113855-06-1 Sun Grid Engine Enterprise Edition 5.3 (64-bit Solaris) NON-Solaris Package format - patch 113856-06 http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21-113856-06-1 N1 Grid Engine 6.0 (32-bit Solaris) - patch 121956-01 http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21-121956-01-1 N1 Grid Engine 6.0 (64-bit Solaris) - patch 121957-01 http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21-121957-01-1 N1 Grid Engine 6.0 (32-bit Solaris) NON-Solaris Package format - patch 121960-01 http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21-121960-01-1 N1 Grid Engine 6.0 (64-bit Solaris) NON-Solaris Package format - patch 121961-01 http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21-121961-01-1 Solaris / x86 Sun Grid Engine 5.3 - patch 113138-07 http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21-113138-07-1 Sun Grid Engine 5.3 NON-Solaris Package format - patch 113851-06 http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21-113851-06-1 Sun Grid Engine Enterprise Edition 5.3 - patch 116658-03 http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21-116658-03-1 Sun Grid Engine Enterprise Edition 5.3 NON-Solaris Package format - patch 116659-03 http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21-116659-03-1 N1 Grid Engine 6.0 - patch 121958-01 http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21-121958-01-1 N1 Grid Engine 6.0 NON-Solaris Package format - patch 121962-01 http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21-121962-01-1 N1 Grid Engine 6.0 (x64) - patch 121959-01 http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21-121959-01-1 N1 Grid Engine 6.0 (x64) NON-Solaris Package format - patch 121963-01 http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21-121963-01-1 Linux Sun Grid Engine 5.3 - patch 113852-06 http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21-113852-06-1 Sun Grid Engine Enterprise Edition 5.3 - patch 113900-05 http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21-113900-05-1 Sun Grid Engine Enterprise Edition 5.3 (x64) - patch 117293-02 http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21-117293-02-1 N1 Grid Engine 6.0 - patch 121964-01 http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21-121964-01-1 N1 Grid Engine 6.0 (x64) - patch 121965-01 http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21-121965-01-1 Windows N1 Grid Engine 6.0 - patch 121971-01 http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21-121971-01-1 HP-UX N1 Grid Engine 6.0 - patch 121969-01 http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21-121969-01-1 AIX N1 Grid Engine 6.0 (for AIX 4.3) - patch 121966-01 http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21-121966-01-1 N1 Grid Engine 6.0 (for AIX 5.1) - patch 121967-01 http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21-121967-01-1 MAC OS N1 Grid Engine 6.0 - patch 121968-01 http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21-121968-01-1 IRIX N1 Grid Engine 6.0 (for IRIX 6.5) - patch 121970-01 http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21-121970-01-1
Identificadores estándar
Propiedad	Valor
CVE	CVE-2006-0408
BID	16366
Recursos adicionales
Sun(sm) Alert Notification 102268 http://sunsolve.sun.com/search/document.do?assetkey=1-26-102268-1

Histórico de versiones
Versión	Comentario	Data
1.0	Aviso emitido	2006-03-29

Boletines de Vulnerabilidades

Vulnerabilidad en Sun Grid Engine

Clasificación de la vulnerabilidad

Información sobre el sistema

Descripción

Solución

Identificadores estándar

Recursos adicionales

Histórico de versiones