CVE-2005-2072: CVE-2005-2072

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2005-2072

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

The runtime linker (ld.so) in Solaris 8, 9, and 10 trusts the LD_AUDIT environment variable in setuid or setgid programs, which allows local users to gain privileges by (1) modifying LD_AUDIT to reference malicious code and possibly (2) using a long value for LD_AUDIT.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Sun Solaris 权限提升漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Solaris是一款由Sun开发和维护的商业性质UNIX操作系统。 Sun Solaris运行时连接器对某些环境变量没有做正确检查，本地攻击者可能利用此漏洞提升自己的权限。起因是Solaris 9和10的ld.so在运行s[ug]id二进制程序时没有检查LD_AUDIT环境变量，导致以提升的权限运行任意代码。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2005-2072

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2005-2072

Please Login to view more intelligence information

http://www.opensolaris.org/jive/thread.jspa?messageID=3497x_refsource_CONFIRM
http://www.securityfocus.com/bid/14074vdb-entryx_refsource_BID
http://secunia.com/advisories/15841third-party-advisoryx_refsource_SECUNIA
http://sunsolve.sun.com/search/document.do?assetkey=1-26-101794-1vendor-advisoryx_refsource_SUNALERT
http://securitytracker.com/id?1014537vdb-entryx_refsource_SECTRACK
http://www.vupen.com/english/advisories/2005/0908vdb-entryx_refsource_VUPEN
http://lists.grok.org.uk/pipermail/full-disclosure/2005-June/034738.htmlmailing-listx_refsource_FULLDISC
http://lists.grok.org.uk/pipermail/full-disclosure/2005-June/034730.htmlmailing-listx_refsource_FULLDISC
http://lists.grok.org.uk/pipermail/full-disclosure/2005-June/034731.htmlmailing-listx_refsource_FULLDISC
https://nvd.nist.gov/vuln/detail/CVE-2005-2072

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2005-2072

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

I. Basic Information for CVE-2005-2072

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2005-2072

III. Intelligence Information for CVE-2005-2072

IV. Related Vulnerabilities

V. Comments for CVE-2005-2072

Leave a comment