CVE-2008-2539

Current Description

The Sun Cluster Global File System in Sun Cluster 3.1 on Sun Solaris 8 through 10, when an underlying ufs filesystem is used, might allow local users to read data from arbitrary deleted files, or corrupt files in global filesystems, via unspecified vectors.

Basic Data

PublishedJune 03, 2008
Last ModifiedAugust 08, 2017
Assignercve@mitre.org
Data TypeCVE
Data FormatMITRE
Data Version4.0
Problem TypeCWE-264
CVE Data Version4.0

Base Metric V2

CVSS 2 - Version2.0
CVSS 2 - Vector StringAV:L/AC:L/Au:N/C:C/I:C/A:C
CVSS 2 - Access VectorLOCAL
CVSS 2 - Access ComplexityLOW
CVSS 2 - AuthenticationNONE
CVSS 2 - Confidentiality ImpactCOMPLETE
CVSS 2 - Availability ImpactCOMPLETE
CVSS 2 - Base Score7.2
SeverityHIGH
Exploitability Score3.9
Impact Score10.0
Obtain All Privilegefalse
Obtain User Privilegefalse
Obtain Other Privilegefalse

Base Metric V3

No data provided.

Configurations

  • OR - Configuration 1
    Cpe VersionPartVendorProductVersionUpdateEditionLanguageSW EditionTarget SWTarget HWOtherVersion Start IncludingVersion End IncludingVersion Start ExcludingVersion End Excluding
    2.3ApplicationSunCluster3.1*solaris_10*****
    2.3ApplicationSunCluster3.1*solaris_8*****
    2.3ApplicationSunCluster3.1*solaris_9*****

Vulnerable Software List

VendorProductVersions
Sun Cluster 3.1

References

NameSourceURLTags
30483http://secunia.com/advisories/30483SECUNIAVendor Advisory
201341http://sunsolve.sun.com/search/document.do?assetkey=1-26-201341-1SUNALERT
29458http://www.securityfocus.com/bid/29458BID
1020152http://www.securitytracker.com/id?1020152SECTRACK
ADV-2008-1713http://www.vupen.com/english/advisories/2008/1713VUPEN
suncluster-unspecified-info-disclosure(42762)https://exchange.xforce.ibmcloud.com/vulnerabilities/42762XF