← Back to CVEs

CVE-2004-1394

N/A

Description

The pfexec function for Sun Solaris 8 and 9 does not properly handle when a custom profile contains an invalid entry in the exec_attr database, which may allow local users with custom rights profiles to execute profile commands with additional privileges.

CVE Details

CVSS v3.1 ScoreN/A

Published12/31/2004

Last Modified4/16/2026

Sourcenvd

Honeypot Sightings0

Affected Products

sun:solarissun:sunos

References

http://secunia.com/advisories/10755/(cve@mitre.org)

http://sunsolve.sun.com/search/document.do?assetkey=1-26-57453-1(cve@mitre.org)

http://www.auscert.org.au/render.html?it=3800(cve@mitre.org)

http://www.osvdb.org/3764(cve@mitre.org)

http://www.securityfocus.com/bid/9534(cve@mitre.org)

http://www.securitytracker.com/id?1008893(cve@mitre.org)

https://exchange.xforce.ibmcloud.com/vulnerabilities/14988(cve@mitre.org)

http://secunia.com/advisories/10755/(af854a3a-2127-422b-91ae-364da2661108)

http://sunsolve.sun.com/search/document.do?assetkey=1-26-57453-1(af854a3a-2127-422b-91ae-364da2661108)

http://www.auscert.org.au/render.html?it=3800(af854a3a-2127-422b-91ae-364da2661108)

http://www.osvdb.org/3764(af854a3a-2127-422b-91ae-364da2661108)

http://www.securityfocus.com/bid/9534(af854a3a-2127-422b-91ae-364da2661108)

http://www.securitytracker.com/id?1008893(af854a3a-2127-422b-91ae-364da2661108)

https://exchange.xforce.ibmcloud.com/vulnerabilities/14988(af854a3a-2127-422b-91ae-364da2661108)

IOC Correlations

No correlations recorded

This product uses data from the NVD API but is not endorsed or certified by the NVD.