Solaris Generic Security Services Library libgss(3LIB) Unspecified Privilege Escalation
Local Access Required
Loss of Confidentiality,
Loss of Integrity
3Lib contains a flaw that may allow a malicious user to gain access to unauthorized privileges. The issue is triggered when an unspecified error making it possible to load a malicious GSS-API (Generic Security Service Application Program Interface) via a privileged GSS-API application linked against the libgss library occurs. This flaw may lead to a loss of confidentiality and integrity.
Upgrade to version 1.1 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.