CVE-2008-3875

The kernel in Sun Solaris 8 through 10 and OpenSolaris before snv_90 allows local users to bypass chroot, zones, and the Solaris Trusted Extensions multi-level security policy, and establish a covert communication channel, via unspecified vectors involving system calls.

Published: Sep 2, 2008
Updated: Apr 13, 2023
CVE: CVE-2008-3875
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 7.2
AV:L/AC:L/Au:N/C:C/I:C/A:C

CWEs:

CWE-264

Affected Software
References

Software	From	Fixed in
sun / opensolaris	build_snv_59	build_snv_59.x
sun / solaris	8	8.x
sun / solaris	9	9.x
sun / opensolaris	build_snv_47	build_snv_47.x
sun / opensolaris	build_snv_19	build_snv_19.x
sun / opensolaris	build_snv_01	build_snv_01.x
sun / opensolaris	build_snv_39	build_snv_39.x
sun / opensolaris	-	build_snv_89.x
sun / opensolaris	build_snv_88	build_snv_88.x
sun / opensolaris	build_snv_87	build_snv_87.x
sun / solaris	10	10.x
sun / opensolaris	build_snv_22	build_snv_22.x
sun / opensolaris	build_snv_79b	build_snv_79b.x
sun / opensolaris	build_snv_02	build_snv_02.x
sun / opensolaris	build_snv_64	build_snv_64.x
sun / opensolaris	build_snv_13	build_snv_13.x

Vulnerability Database

289,599

CVE-2008-3875