CVE-2007-2617

N/A Unknown

Published: May 11, 2007 Modified: April 23, 2026

Description

srsexec in Sun Remote Services (SRS) Net Connect Software Proxy Core package in Sun Solaris 10 does not enforce file permissions when opening files, which allows local users to read the first line of arbitrary files via the -d and -v options.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=531

Source: cve@mitre.org

http://osvdb.org/35940

Source: cve@mitre.org

http://secunia.com/advisories/25194

Source: cve@mitre.org

Vendor Advisory

http://sunsolve.sun.com/search/document.do?assetkey=1-26-102891-1

Source: cve@mitre.org

Patch

http://www.securityfocus.com/bid/23915

Source: cve@mitre.org

Patch

http://www.securitytracker.com/id?1018046

Source: cve@mitre.org

http://www.vupen.com/english/advisories/2007/1769

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/34223

Source: cve@mitre.org

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1920

Source: cve@mitre.org

http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=531