CVE-2004-2306

Published: Dec 31, 2004Modified: Apr 16, 2026

4.6

Vector

AV:L/AC:L/Au:N/C:P/I:P/A:P

Exploitability: 3.9 / Impact: 6.4

Source: NVD

Description

Sun Solaris 7 through 9, when Basic Security Module (BSM) is enabled and the SUNWscpu package has been removed as a result of security hardening, disables mail alerts from the audit_warn script, which might allow attackers to escape detection.

Affected (6)

Products: Sun: Solaris, Sunos

Sun

2 products

Solaris

Sunos

Configuration A

6 vulnerable

Vulnerable Software	Affected Versions
Sun Solaris	Version 7.0
Sun Solaris	Version 8.0
Sun Solaris	Version 9.0
Sun Solaris	Version 9.0
Sun Sunos	Version 5.7
Sun Sunos	Version 5.8

References (8)

http://sunsolve.sun.com/search/document.do?assetkey=1-26-57483-1

Source: cve@mitre.org

PatchVendor Advisory

http://www.ciac.org/ciac/bulletins/o-070.shtml

Source: cve@mitre.org

PatchVendor Advisory

http://www.securityfocus.com/bid/13724

Source: cve@mitre.org

Patch

https://exchange.xforce.ibmcloud.com/vulnerabilities/15042

Source: cve@mitre.org

http://sunsolve.sun.com/search/document.do?assetkey=1-26-57483-1

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

http://www.ciac.org/ciac/bulletins/o-070.shtml

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

http://www.securityfocus.com/bid/13724

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

https://exchange.xforce.ibmcloud.com/vulnerabilities/15042

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.