Vigil@nce: Sun Cluster, file reading via GFS
June 2008 by Vigil@nce
A local attacker can read files deleted by Sun Cluster Global File
System users.
– Gravity: 1/4
– Consequences: data reading
– Provenance: user shell
– Means of attack: no proof of concept, no attack
– Ability of attacker: expert (4/4)
– Confidence: confirmed by the editor (5/5)
– Diffusion of the vulnerable configuration: high (3/3)
– Creation date: 02/06/2008
– Identifier: VIGILANCE-VUL-7865
IMPACTED PRODUCTS
– Sun Solaris [confidential versions]
– Sun Trusted Solaris [confidential versions]
DESCRIPTION
The Global File System is used by Sun Cluster.
With Sun Cluster version 3.1, when a GFS filesystem is mounted on
a UFS filesystem, a local attacker can read the content of deleted
files.
A local attacker can therefore obtain sensitive information stored
in files deleted by GFS users.
CHARACTERISTICS
– Identifiers: 201341, 6312633, VIGILANCE-VUL-7865
– Url: https://vigilance.aql.fr/tree/1/7865