| Secunia Advisory: | SA29368 | |
| Release Date: | 2008-03-13 | |
| Critical: |  Not critical | |
| Impact: | Security Bypass | |
| Where: | Local system | |
| Solution Status: | Vendor Patch | |
| OS: | Sun Solaris 10 | |
| Software: | Sun Java Desktop System (JDS) Release 2 | |
| Want to know the next time vulnerabilities are fixed in this product? - Companies can be alerted via email and SMS! | ||
A vulnerability has been reported in Sun Solaris, which can be exploited by malicious people to bypass certain security restrictions.
The vulnerability is caused due to an unspecified error in XscreenSaver in the Solaris 10 Java Desktop System (JDS) when the GNOME On-Screen Keyboard (GOK) is being used. This can be exploited to bypass authentication to the XscreenSaver process.
The vulnerability is reported in Solaris 10 for both the SPARC and x86 platform.
Solution:
-- SPARC Platform --
Solaris 10:
Apply patch 120094-16 or later.
http://sunsolve.sun.com/search/docume...setkey=urn:cds:docid:1-21-120094-16-1
-- x86 Platform --
Solaris 10:
Apply patch 120095-16 or later.
http://sunsolve.sun.com/search/docume...setkey=urn:cds:docid:1-21-120095-16-1
Provided and/or discovered by:
Reported by the vendor.
Original Advisory:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-234661-1
資料來源 secunia.com/advisories/29368/
全站熱搜
留言列表
