CVE-2003-1575

Published: Jan 28, 2010Modified: Apr 29, 2026

4.6

Vector

AV:L/AC:L/Au:N/C:P/I:P/A:P

Exploitability: 3.9 / Impact: 6.4

Source: NVD

Description

VERITAS File System (VxFS) 3.3.3, 3.4, and 3.5 before MP1 Rolling Patch 02 for Sun Solaris 2.5.1 through 9 does not properly implement inheritance of default ACLs in certain circumstances related to the characteristics of a directory inode, which allows local users to bypass intended file permissions by accessing a file on a VxFS filesystem.

Affected (3)

Products: Symantec: Vxfs

1 product

Configuration A

1 vulnerable · 2 platform

Vulnerable Software	Affected Versions
Symantec Vxfs	Version 3.3.3

Running on/with	Platform Versions
Sun Solaris	Version 2.5.1
Sun Solaris	Version 2.6

Configuration B

2 vulnerable · 3 platform

Vulnerable Software	Affected Versions
Symantec Vxfs	Version 3.4
Symantec Vxfs	Version 3.5

Running on/with	Platform Versions
Sun Solaris	Version 7.0
Sun Solaris	Version 8.0
Sun Solaris	Version 9.0

Related CWEs

References (4)

http://sunsolve.sun.com/search/document.do?assetkey=1-21-113207-05-1

Source: cve@mitre.org

Patch

http://sunsolve.sun.com/search/document.do?assetkey=1-66-200161-1

Source: cve@mitre.org

PatchVendor Advisory

http://sunsolve.sun.com/search/document.do?assetkey=1-21-113207-05-1

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

http://sunsolve.sun.com/search/document.do?assetkey=1-66-200161-1

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

Timeline

No history available yet.