hald in Sun OpenSolaris snv_51 through snv_130 does not have the proc_audit privilege during unspecified attempts to write to the auditing log, which makes it easier for physically proximate attackers to avoid detection of changes to the set of connected hardware devices supporting the Hardware Abstraction Layer (HAL) specification.
| Version | Base score | Base severity | Vector |
|---|
| Hyperlink | Resource Type |
|---|
hald in Sun OpenSolaris snv_51 through snv_130 does not have the proc_audit privilege during unspecified attempts to write to the auditing log, which makes it easier for physically proximate attackers to avoid detection of changes to the set of connected hardware devices supporting the Hardware Abstraction Layer (HAL) specification.
| Type | CWE ID | Description |
|---|---|---|
| text | N/A | n/a |
| Version | Base score | Base severity | Vector |
|---|
| CAPEC ID | Description |
|---|
| Event | Date |
|---|
| Hyperlink | Resource |
|---|---|
| http://www.vupen.com/english/advisories/2010/0076 | vdb-entry x_refsource_VUPEN |
| https://exchange.xforce.ibmcloud.com/vulnerabilities/55461 | vdb-entry x_refsource_XF |
| http://www.securitytracker.com/id?1023416 | vdb-entry x_refsource_SECTRACK |
| http://sunsolve.sun.com/search/document.do?assetkey=1-66-274830-1 | vendor-advisory x_refsource_SUNALERT |
| http://www.securityfocus.com/bid/37656 | vdb-entry x_refsource_BID |
| Version | Base score | Base severity | Vector |
|---|
| CAPEC ID | Description |
|---|
| Event | Date |
|---|
| Hyperlink | Resource |
|---|---|
| http://www.vupen.com/english/advisories/2010/0076 | vdb-entry x_refsource_VUPEN x_transferred |
| https://exchange.xforce.ibmcloud.com/vulnerabilities/55461 | vdb-entry x_refsource_XF x_transferred |
| http://www.securitytracker.com/id?1023416 | vdb-entry x_refsource_SECTRACK x_transferred |
| http://sunsolve.sun.com/search/document.do?assetkey=1-66-274830-1 | vendor-advisory x_refsource_SUNALERT x_transferred |
| http://www.securityfocus.com/bid/37656 | vdb-entry x_refsource_BID x_transferred |
hald in Sun OpenSolaris snv_51 through snv_130 does not have the proc_audit privilege during unspecified attempts to write to the auditing log, which makes it easier for physically proximate attackers to avoid detection of changes to the set of connected hardware devices supporting the Hardware Abstraction Layer (HAL) specification.
| Date Added | Due Date | Vulnerability Name | Required Action |
|---|---|---|---|
| N/A |
| Type | Version | Base score | Base severity | Vector |
|---|---|---|---|---|
| Primary | 2.0 | 4.6 | MEDIUM | AV:L/AC:L/Au:N/C:P/I:P/A:P |
| Hyperlink | Source | Resource |
|---|---|---|
| http://sunsolve.sun.com/search/document.do?assetkey=1-66-274830-1 | cve@mitre.org | Vendor Advisory |
| http://www.securityfocus.com/bid/37656 | cve@mitre.org | N/A |
| http://www.securitytracker.com/id?1023416 | cve@mitre.org | N/A |
| http://www.vupen.com/english/advisories/2010/0076 | cve@mitre.org | N/A |
| https://exchange.xforce.ibmcloud.com/vulnerabilities/55461 | cve@mitre.org | N/A |