Oracle Solaris CVE-2017-3622 Local Privilege Escalation Vulnerability

Oracle Solaris is prone to a local privilege escalation vulnerability. The 'Common Desktop Environment (CDE)' sub component is affected.

A local attacker may exploit this issue to gain elevated privileges on the affected system.

This vulnerability affects the following supported versions:
10

Information

Bugtraq ID: 97774
Class: Unknown
CVE: CVE-2017-3622

Remote: No
Local: Yes
Published: Apr 18 2017 12:00AM
Updated: May 29 2017 02:01PM
Credit: Oracle
Vulnerable: Oracle Solaris 10

Not Vulnerable:

Exploit

Reports indicate that this issue is being exploited in the wild. Please see the references for more information.

References:

Oracle Homepage (Oracle)
Oracle patches Solaris 10 hole exploited by NSA spyware tool â?? and 298 other sec (The Register)
Oracle Critical Patch Update Advisory - April 2017 (Oracle)

Source: www.securityfocus.com

Exploit Collector

Search Exploit