Vulnerability Note VU#694782
Sun Solaris passwd command allows for privilege escalation
Sun Solaris contains a vulnerability in the passwd(1) command which could allow for privilege escalation.
The passwd command is used to update a user's authentication token(s). There is non-specific vulnerability identified in Sun Security Alert ID: 57454. This vulnerability could allow a local unprivileged user to gain root privileges.
A local unprivileged user may gain root privileges.
According to Sun Microsystems, this issue is resolved in the following releases:
Systems Affected (Learn More)
|Vendor||Status||Date Notified||Date Updated|
|Sun Microsystems Inc.||Affected||-||05 Mar 2004|
CVSS Metrics (Learn More)
Sun Microsystems credits Tim Wort for reporting this vulnerability.
This document was written by Damon Morda.
- CVE IDs: Unknown
- Date Public: 26 Feb 2004
- Date First Published: 05 Mar 2004
- Date Last Updated: 05 Mar 2004
- Severity Metric: 14.06
- Document Revision: 6
If you have feedback, comments, or additional information about this vulnerability, please send us email.