Vulnerabilities > CVE-2006-0901 - Local Denial Of Service vulnerability in Sun Solaris HSFS Filesystem
Attack vector
LOCAL Attack complexity
LOW Privileges required
NONE Confidentiality impact
COMPLETE Integrity impact
COMPLETE Availability impact
COMPLETE Summary
Unspecified vulnerability in the hsfs filesystem in Solaris 8, 9, and 10 allows unspecified attackers to cause a denial of service (panic) or execute arbitrary code.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| OS | 6 |
Nessus
NASL family Solaris Local Security Checks NASL id SOLARIS10_119596.NASL description SunOS 5.10: hsfs patch. Date this patch was last updated by Sun : Feb/22/06 last seen 2018-09-01 modified 2018-08-13 plugin id 20739 published 2006-01-18 reporter Tenable source https://www.tenable.com/plugins/index.php?view=single&id=20739 title Solaris 10 (sparc) : 119596-03 code #%NASL_MIN_LEVEL 80502 # @DEPRECATED@ # # This script has been deprecated as the associated patch is not # currently a recommended security fix. # # Disabled on 2011/10/24. # # # (C) Tenable Network Security, Inc. # # if ( ! defined_func("bn_random") ) exit(0); include("compat.inc"); if(description) { script_id(20739); script_version("1.28"); script_name(english: "Solaris 10 (sparc) : 119596-03"); script_cve_id("CVE-2006-0901"); script_set_attribute(attribute: "synopsis", value: "The remote host is missing Sun Security Patch number 119596-03"); script_set_attribute(attribute: "description", value: 'SunOS 5.10: hsfs patch. Date this patch was last updated by Sun : Feb/22/06'); script_set_attribute(attribute: "solution", value: "You should install this patch for your system to be up-to-date."); script_set_attribute(attribute: "see_also", value: "http://download.oracle.com/sunalerts/1001025.1.html"); script_set_attribute(attribute: "cvss_vector", value: "CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C"); script_set_attribute(attribute:"plugin_publication_date", value: "2006/01/18"); script_cvs_date("Date: 2019/10/25 13:36:23"); script_set_attribute(attribute:"vuln_publication_date", value: "2006/02/24"); script_end_attributes(); script_summary(english: "Check for patch 119596-03"); script_category(ACT_GATHER_INFO); script_copyright(english:"This script is Copyright (C) 2006-2019 Tenable Network Security, Inc."); family["english"] = "Solaris Local Security Checks"; script_family(english:family["english"]); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Solaris/showrev"); exit(0); } # Deprecated. exit(0, "The associated patch is not currently a recommended security fix.");NASL family Solaris Local Security Checks NASL id SOLARIS8_X86_109765.NASL description SunOS 5.8_x86: /kernel/fs/hsfs patch. Date this patch was last updated by Sun : Feb/21/06 last seen 2020-06-01 modified 2020-06-02 plugin id 21010 published 2006-03-06 reporter This script is Copyright (C) 2006-2019 Tenable Network Security, Inc. source https://www.tenable.com/plugins/nessus/21010 title Solaris 8 (x86) : 109765-06 code #%NASL_MIN_LEVEL 80502 # # (C) Tenable Network Security, Inc. # # The descriptive text in this plugin was # extracted from the Oracle SunOS Patch Updates. # include("compat.inc"); if (description) { script_id(21010); script_version("1.20"); script_cvs_date("Date: 2019/10/25 13:36:23"); script_cve_id("CVE-2006-0901"); script_name(english:"Solaris 8 (x86) : 109765-06"); script_summary(english:"Check for patch 109765-06"); script_set_attribute( attribute:"synopsis", value:"The remote host is missing Sun Security Patch number 109765-06" ); script_set_attribute( attribute:"description", value: "SunOS 5.8_x86: /kernel/fs/hsfs patch. Date this patch was last updated by Sun : Feb/21/06" ); script_set_attribute( attribute:"see_also", value:"http://download.oracle.com/sunalerts/1001025.1.html" ); script_set_attribute( attribute:"solution", value:"You should install this patch for your system to be up-to-date." ); script_set_cvss_base_vector("CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C"); script_set_attribute(attribute:"plugin_type", value:"local"); script_set_attribute(attribute:"cpe", value:"cpe:/o:sun:solaris"); script_set_attribute(attribute:"patch_publication_date", value:"2006/02/21"); script_set_attribute(attribute:"plugin_publication_date", value:"2006/03/06"); script_end_attributes(); script_category(ACT_GATHER_INFO); script_copyright(english:"This script is Copyright (C) 2006-2019 Tenable Network Security, Inc."); script_family(english:"Solaris Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/local_checks_enabled", "Host/Solaris/showrev"); exit(0); } include("audit.inc"); include("global_settings.inc"); include("solaris.inc"); if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED); if (solaris_check_patch(release:"5.8_x86", arch:"i386", patch:"109765-06", obsoleted_by:"", package:"SUNWhea", version:"11.8.0,REV=2000.01.08.18.17") < 0) flag++; if (solaris_check_patch(release:"5.8_x86", arch:"i386", patch:"109765-06", obsoleted_by:"", package:"SUNWcsr", version:"11.8.0,REV=2000.01.08.18.17") < 0) flag++; if (flag) { if (report_verbosity > 0) security_hole(port:0, extra:solaris_get_report()); else security_hole(0); exit(0); } audit(AUDIT_HOST_NOT, "affected");NASL family Solaris Local Security Checks NASL id SOLARIS9_X86_121995.NASL description SunOS 5.9_x86: hsfs Patch. Date this patch was last updated by Sun : Feb/22/06 last seen 2020-06-01 modified 2020-06-02 plugin id 21012 published 2006-03-06 reporter This script is Copyright (C) 2006-2019 Tenable Network Security, Inc. source https://www.tenable.com/plugins/nessus/21012 title Solaris 9 (x86) : 121995-01 code #%NASL_MIN_LEVEL 80502 # # (C) Tenable Network Security, Inc. # # The descriptive text in this plugin was # extracted from the Oracle SunOS Patch Updates. # include("compat.inc"); if (description) { script_id(21012); script_version("1.21"); script_cvs_date("Date: 2019/10/25 13:36:23"); script_cve_id("CVE-2006-0901"); script_name(english:"Solaris 9 (x86) : 121995-01"); script_summary(english:"Check for patch 121995-01"); script_set_attribute( attribute:"synopsis", value:"The remote host is missing Sun Security Patch number 121995-01" ); script_set_attribute( attribute:"description", value: "SunOS 5.9_x86: hsfs Patch. Date this patch was last updated by Sun : Feb/22/06" ); script_set_attribute( attribute:"see_also", value:"http://download.oracle.com/sunalerts/1001025.1.html" ); script_set_attribute( attribute:"solution", value:"You should install this patch for your system to be up-to-date." ); script_set_cvss_base_vector("CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C"); script_set_attribute(attribute:"plugin_type", value:"local"); script_set_attribute(attribute:"cpe", value:"cpe:/o:sun:solaris"); script_set_attribute(attribute:"patch_publication_date", value:"2006/02/22"); script_set_attribute(attribute:"plugin_publication_date", value:"2006/03/06"); script_end_attributes(); script_category(ACT_GATHER_INFO); script_copyright(english:"This script is Copyright (C) 2006-2019 Tenable Network Security, Inc."); script_family(english:"Solaris Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/local_checks_enabled", "Host/Solaris/showrev"); exit(0); } include("audit.inc"); include("global_settings.inc"); include("solaris.inc"); if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED); if (solaris_check_patch(release:"5.9_x86", arch:"i386", patch:"121995-01", obsoleted_by:"", package:"SUNWhea", version:"11.9.0,REV=2002.11.04.02.51") < 0) flag++; if (solaris_check_patch(release:"5.9_x86", arch:"i386", patch:"121995-01", obsoleted_by:"", package:"SUNWcsr", version:"11.9.0,REV=2002.11.04.02.51") < 0) flag++; if (flag) { if (report_verbosity > 0) security_hole(port:0, extra:solaris_get_report()); else security_hole(0); exit(0); } audit(AUDIT_HOST_NOT, "affected");NASL family Solaris Local Security Checks NASL id SOLARIS8_109764.NASL description SunOS 5.8: /kernel/fs/hsfs and /kernel/fs/sparcv9/hsfs patch. Date this patch was last updated by Sun : Feb/21/06 last seen 2020-06-01 modified 2020-06-02 plugin id 21009 published 2006-03-06 reporter This script is Copyright (C) 2006-2019 Tenable Network Security, Inc. source https://www.tenable.com/plugins/nessus/21009 title Solaris 8 (sparc) : 109764-06 code #%NASL_MIN_LEVEL 80502 # # (C) Tenable Network Security, Inc. # # The descriptive text in this plugin was # extracted from the Oracle SunOS Patch Updates. # include("compat.inc"); if (description) { script_id(21009); script_version("1.24"); script_cvs_date("Date: 2019/10/25 13:36:23"); script_cve_id("CVE-2006-0901"); script_name(english:"Solaris 8 (sparc) : 109764-06"); script_summary(english:"Check for patch 109764-06"); script_set_attribute( attribute:"synopsis", value:"The remote host is missing Sun Security Patch number 109764-06" ); script_set_attribute( attribute:"description", value: "SunOS 5.8: /kernel/fs/hsfs and /kernel/fs/sparcv9/hsfs patch. Date this patch was last updated by Sun : Feb/21/06" ); script_set_attribute( attribute:"see_also", value:"http://download.oracle.com/sunalerts/1001025.1.html" ); script_set_attribute( attribute:"solution", value:"You should install this patch for your system to be up-to-date." ); script_set_cvss_base_vector("CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C"); script_set_attribute(attribute:"plugin_type", value:"local"); script_set_attribute(attribute:"cpe", value:"cpe:/o:sun:solaris"); script_set_attribute(attribute:"patch_publication_date", value:"2006/02/21"); script_set_attribute(attribute:"plugin_publication_date", value:"2006/03/06"); script_end_attributes(); script_category(ACT_GATHER_INFO); script_copyright(english:"This script is Copyright (C) 2006-2019 Tenable Network Security, Inc."); script_family(english:"Solaris Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/local_checks_enabled", "Host/Solaris/showrev"); exit(0); } include("audit.inc"); include("global_settings.inc"); include("solaris.inc"); if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED); if (solaris_check_patch(release:"5.8", arch:"sparc", patch:"109764-06", obsoleted_by:"", package:"SUNWhea", version:"11.8.0,REV=2000.01.08.18.12") < 0) flag++; if (solaris_check_patch(release:"5.8", arch:"sparc", patch:"109764-06", obsoleted_by:"", package:"SUNWcarx", version:"11.8.0,REV=2000.01.13.13.40") < 0) flag++; if (solaris_check_patch(release:"5.8", arch:"sparc", patch:"109764-06", obsoleted_by:"", package:"SUNWcsr", version:"11.8.0,REV=2000.01.08.18.12") < 0) flag++; if (flag) { if (report_verbosity > 0) security_hole(port:0, extra:solaris_get_report()); else security_hole(0); exit(0); } audit(AUDIT_HOST_NOT, "affected");NASL family Solaris Local Security Checks NASL id SOLARIS10_X86_118813.NASL description SunOS 5.10_x86: hsfs patch. Date this patch was last updated by Sun : Feb/22/06 last seen 2018-09-01 modified 2018-08-13 plugin id 21007 published 2006-03-06 reporter Tenable source https://www.tenable.com/plugins/index.php?view=single&id=21007 title Solaris 10 (x86) : 118813-03 code #%NASL_MIN_LEVEL 80502 # @DEPRECATED@ # # This script has been deprecated as the associated patch is not # currently a recommended security fix. # # Disabled on 2011/10/24. # # # (C) Tenable Network Security, Inc. # # if ( ! defined_func("bn_random") ) exit(0); include("compat.inc"); if(description) { script_id(21007); script_version("1.26"); script_name(english: "Solaris 10 (x86) : 118813-03"); script_cve_id("CVE-2006-0901"); script_set_attribute(attribute: "synopsis", value: "The remote host is missing Sun Security Patch number 118813-03"); script_set_attribute(attribute: "description", value: 'SunOS 5.10_x86: hsfs patch. Date this patch was last updated by Sun : Feb/22/06'); script_set_attribute(attribute: "solution", value: "You should install this patch for your system to be up-to-date."); script_set_attribute(attribute: "see_also", value: "http://download.oracle.com/sunalerts/1001025.1.html"); script_set_attribute(attribute: "cvss_vector", value: "CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C"); script_set_attribute(attribute:"plugin_publication_date", value: "2006/03/06"); script_cvs_date("Date: 2019/10/25 13:36:23"); script_set_attribute(attribute:"vuln_publication_date", value: "2006/02/24"); script_end_attributes(); script_summary(english: "Check for patch 118813-03"); script_category(ACT_GATHER_INFO); script_copyright(english:"This script is Copyright (C) 2006-2019 Tenable Network Security, Inc."); family["english"] = "Solaris Local Security Checks"; script_family(english:family["english"]); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Solaris/showrev"); exit(0); } # Deprecated. exit(0, "The associated patch is not currently a recommended security fix.");NASL family Solaris Local Security Checks NASL id SOLARIS9_116047.NASL description SunOS 5.9: hsfs Patch. Date this patch was last updated by Sun : Feb/22/06 last seen 2020-06-01 modified 2020-06-02 plugin id 21011 published 2006-03-06 reporter This script is Copyright (C) 2006-2019 Tenable Network Security, Inc. source https://www.tenable.com/plugins/nessus/21011 title Solaris 9 (sparc) : 116047-03 code #%NASL_MIN_LEVEL 80502 # # (C) Tenable Network Security, Inc. # # The descriptive text in this plugin was # extracted from the Oracle SunOS Patch Updates. # include("compat.inc"); if (description) { script_id(21011); script_version("1.22"); script_cvs_date("Date: 2019/10/25 13:36:23"); script_cve_id("CVE-2006-0901"); script_name(english:"Solaris 9 (sparc) : 116047-03"); script_summary(english:"Check for patch 116047-03"); script_set_attribute( attribute:"synopsis", value:"The remote host is missing Sun Security Patch number 116047-03" ); script_set_attribute( attribute:"description", value: "SunOS 5.9: hsfs Patch. Date this patch was last updated by Sun : Feb/22/06" ); script_set_attribute( attribute:"see_also", value:"http://download.oracle.com/sunalerts/1001025.1.html" ); script_set_attribute( attribute:"solution", value:"You should install this patch for your system to be up-to-date." ); script_set_cvss_base_vector("CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C"); script_set_attribute(attribute:"plugin_type", value:"local"); script_set_attribute(attribute:"cpe", value:"cpe:/o:sun:solaris"); script_set_attribute(attribute:"patch_publication_date", value:"2006/02/22"); script_set_attribute(attribute:"plugin_publication_date", value:"2006/03/06"); script_end_attributes(); script_category(ACT_GATHER_INFO); script_copyright(english:"This script is Copyright (C) 2006-2019 Tenable Network Security, Inc."); script_family(english:"Solaris Local Security Checks"); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/local_checks_enabled", "Host/Solaris/showrev"); exit(0); } include("audit.inc"); include("global_settings.inc"); include("solaris.inc"); if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED); if (solaris_check_patch(release:"5.9", arch:"sparc", patch:"116047-03", obsoleted_by:"", package:"SUNWhea", version:"11.9.0,REV=2002.04.06.15.27") < 0) flag++; if (solaris_check_patch(release:"5.9", arch:"sparc", patch:"116047-03", obsoleted_by:"", package:"SUNWcarx", version:"11.9.0,REV=2002.04.09.12.25") < 0) flag++; if (solaris_check_patch(release:"5.9", arch:"sparc", patch:"116047-03", obsoleted_by:"", package:"SUNWcsr", version:"11.9.0,REV=2002.04.06.15.27") < 0) flag++; if (flag) { if (report_verbosity > 0) security_hole(port:0, extra:solaris_get_report()); else security_hole(0); exit(0); } audit(AUDIT_HOST_NOT, "affected");
Oval
| accepted | 2011-05-09T04:01:17.190-04:00 | ||||||||
| class | vulnerability | ||||||||
| contributors |
| ||||||||
| description | Unspecified vulnerability in the hsfs filesystem in Solaris 8, 9, and 10 allows unspecified attackers to cause a denial of service (panic) or execute arbitrary code. | ||||||||
| family | unix | ||||||||
| id | oval:org.mitre.oval:def:1628 | ||||||||
| status | accepted | ||||||||
| submitted | 2006-02-26T12:31:00.000-04:00 | ||||||||
| title | CD Drive DoS Vulnerability | ||||||||
| version | 37 |
References
- http://secunia.com/advisories/19042
- http://securitytracker.com/id?1015680
- http://sunsolve.sun.com/search/document.do?assetkey=1-26-102161-1
- http://www.securityfocus.com/bid/16826
- http://www.vupen.com/english/advisories/2006/0756
- https://exchange.xforce.ibmcloud.com/vulnerabilities/24911
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1628