SunOS 4.0.3 Restore Vulnerability

MEDIUM (4.6) Patch Available Patch Patch
privilege-escalationrestore-vulnerabilitysunossunos-403

Threat Intelligence

Low Risk
EPSS Score: 0.09% chance of exploitation (percentile: 26%)
🔍 Detection Tools: None available in major open-source tools
⚔️ Exploit Availability: No public exploits found

How we test →

What is it?

SunOS is a Unix operating system used primarily on older Sun hardware. The vulnerability in the restore process allows local users to gain privileges by manipulating certain files and directories.

Am I affected?

You're affected if you use SunOS 4.0.3 or earlier versions. To check, run the following command: ls /dev/rdsk/* and look for /dev/rdsk/c0t0d0s0. If this file exists, your system is vulnerable.

Note: This vulnerability is specific to older Sun hardware and software versions; if you don't recognize the name "SunOS," you're probably not affected.

Affected Products

Sun Microsystems / SunOS

How to fix

  1. Apply the patch from CERT (http://www.cert.org/advisories/CA-1989-02.html) or download it directly from the Sun website.
  2. Immediately apply the patch to prevent unauthorized access.

References