Power management (Powermanagement) on Solaris 2.4 up to and including 2.6 does not start the xlock process until after the sys-suspend has completed, which allows an attacker with physical access to input characters to the last active application from the keyboard for a short period after the system is restoring, which could lead to increased privileges.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
sun sunos 5.4 |
||
sun solaris 2.4 |
||
sun sunos - |
||
sun sunos 5.5 |
||
sun sunos 5.5.1 |
||
sun solaris 2.5 |
||
sun solaris 2.6 |
||
sun solaris 2.5.1 |