Sun Microsystems announced two updates this morning relating to the Solaris Management Console (SMC) for Solaris 8, 9, and 10 on both SPARC and X86 platforms. Vulnerabilities in the authentication and logging mechanisms for the Solaris Management Console could lead to an attacker gaining escalated privileges. Sun has made patches available to address these issues. More detailed information can be found in the following SunSolve documents:
- #102902: Security Vulnerability in the Authentication Mechanism for Solaris Management Console (SMC) May Lead to Escalation of Privileges
- #102903: Security Vulnerability in the Logging Mechanism for Solaris Management Console (SMC) May Lead to Escalation of Privileges
Get Slaptijack updates delivered to your Inbox or RSS Reader for free!