---------------------------------------------------------------------- Want to work within IT-Security? Secunia is expanding its team of highly skilled security experts. We will help with relocation and obtaining a work permit. Currently the following type of positions are available: http://secunia.com/hardcore_disassembler_and_reverse_engineer/ ---------------------------------------------------------------------- TITLE: Solaris Netscape Portable Runtime Privilege Escalation SECUNIA ADVISORY ID: SA22348 VERIFY ADVISORY: http://secunia.com/advisories/22348/ CRITICAL: Less critical IMPACT: Privilege escalation, DoS WHERE: Local system OPERATING SYSTEM: Sun Solaris 10 http://secunia.com/product/4813/ DESCRIPTION: A vulnerability has been reported in Sun Solaris, which can be exploited by malicious, local users to gain escalated privileges or cause a DoS (Denial of Service). The vulnerability is caused due to the insecure use of environment variables within the Netscape Portable Runtime (NSPR). This can be exploited to overwrite arbitrary files or gain escalated privileges. The vulnerability is reported in Sun Solaris 10 for both the SPARC and x86 platform, but may also affect third party software running setuid in other versions. SOLUTION: Apply patches. -- SPARC platform -- Sun Solaris 10: http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21-119213-10-1 Sun Solaris 9: http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21-119211-10-1 Sun Solaris 8: http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21-119209-10-1 -- x86 Platform -- Sun Solaris 10: http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21-119214-10-1 Sun Solaris 9: http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21-119212-10-1 -- Linux Platform -- Apply patch 121656-10 or later. http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21-121656-10-1 -- HP-UX Platform -- Apply patch 124379-01 or later. http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21-124379-01-1 PROVIDED AND/OR DISCOVERED BY: Discovered by an anonymous person and reported via iDefense Labs. ORIGINAL ADVISORY: Sun Microsystems: http://sunsolve.sun.com/search/document.do?assetkey=1-26-102658-1&searchclause iDefense Labs: http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=418 ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help everybody keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org ----------------------------------------------------------------------