CVE-2007-6505

Published: Dec 20, 2007Modified: Apr 23, 2026

3.5

Vector

AV:N/AC:M/Au:S/C:P/I:N/A:N

Exploitability: 6.8 / Impact: 2.9

Source: NVD

Description

Solaris 9, with Solaris Auditing enabled and certain patches for sshd installed, can generate audit records with an audit-ID of 0 even when the user logging into ssh is not root, which makes it easier for attackers to avoid detection and can make it more difficult to conduct forensics activities.

Affected (2)

Products: Sun: Solaris

1 product

Configuration A

2 vulnerable

Vulnerable Software	Affected Versions
Sun Solaris	Version 9
Sun Solaris	Version 9

Related CWEs

References (10)

http://osvdb.org/44332

Source: cve@mitre.org

http://sunsolve.sun.com/search/document.do?assetkey=1-26-103172-1

Source: cve@mitre.org

Patch

http://sunsolve.sun.com/search/document.do?assetkey=1-66-201310-1

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/39185

Source: cve@mitre.org

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5282

Source: cve@mitre.org

http://osvdb.org/44332

Source: af854a3a-2127-422b-91ae-364da2661108

http://sunsolve.sun.com/search/document.do?assetkey=1-26-103172-1

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

http://sunsolve.sun.com/search/document.do?assetkey=1-66-201310-1

Source: af854a3a-2127-422b-91ae-364da2661108

https://exchange.xforce.ibmcloud.com/vulnerabilities/39185

Source: af854a3a-2127-422b-91ae-364da2661108

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5282

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.