CVE-2001-1414

Published: Oct 9, 2001Modified: Apr 16, 2026

7.5

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability: 10.0 / Impact: 6.4

Source: NVD

Description

The Basic Security Module (BSM) for Solaris 2.5.1, 2.6, 7, and 8 does not log anonymous FTP access, which allows remote attackers to hide their activities, possibly when certain BSM audit files are not present under the FTP root.

Affected (8)

Products: Sun: Solaris, Sunos

Sun

2 products

Solaris

Sunos

Configuration A

8 vulnerable

Vulnerable Software	Affected Versions
Sun Solaris	Version 2.5.1
Sun Solaris	Version 2.6
Sun Solaris	Version 7.0
Sun Solaris	Version 8.0
Sun Sunos	All versions
Sun Sunos	Version 5.5.1
Sun Sunos	Version 5.7
Sun Sunos	Version 5.8

References (6)

http://sunsolve.sun.com/search/document.do?assetkey=1-26-40521-1

Source: cve@mitre.org

Vendor Advisory

http://www.securityfocus.com/bid/7396

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/11841

Source: cve@mitre.org

http://sunsolve.sun.com/search/document.do?assetkey=1-26-40521-1

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://www.securityfocus.com/bid/7396

Source: af854a3a-2127-422b-91ae-364da2661108

https://exchange.xforce.ibmcloud.com/vulnerabilities/11841

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.