Vulnerabilities > CVE-2006-1780 - Local Denial of Service vulnerability in Sun Solaris SH(1)
Attack vector
LOCAL Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
NONE Availability impact
PARTIAL Summary
The Bourne shell (sh) in Solaris 8, 9, and 10 allows local users to cause a denial of service (sh crash) via an unspecified attack vector that causes sh processes to crash during creation of temporary files. Apply patches.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| OS | 3 |
Nessus
NASL family Solaris Local Security Checks NASL id SOLARIS9_X86_118536.NASL description SunOS 5.9_x86: sh/jsh/rsh/pfsh Patch. Date this patch was last updated by Sun : Aug/17/09 last seen 2020-06-01 modified 2020-06-02 plugin id 21268 published 2006-04-21 reporter This script is Copyright (C) 2006-2019 Tenable Network Security, Inc. source https://www.tenable.com/plugins/nessus/21268 title Solaris 9 (x86) : 118536-06 NASL family Solaris Local Security Checks NASL id SOLARIS9_118535.NASL description SunOS 5.9: sh/jsh/rsh/pfsh Patch. Date this patch was last updated by Sun : Aug/17/09 last seen 2020-06-01 modified 2020-06-02 plugin id 21265 published 2006-04-21 reporter This script is Copyright (C) 2006-2019 Tenable Network Security, Inc. source https://www.tenable.com/plugins/nessus/21265 title Solaris 9 (sparc) : 118535-06 NASL family Solaris Local Security Checks NASL id SOLARIS8_X86_109325.NASL description SunOS 5.8_x86: sh/jsh/rsh/pfsh patch. Date this patch was last updated by Sun : May/27/08 last seen 2020-06-01 modified 2020-06-02 plugin id 13428 published 2004-07-12 reporter This script is Copyright (C) 2004-2019 Tenable Network Security, Inc. source https://www.tenable.com/plugins/nessus/13428 title Solaris 8 (x86) : 109325-10 NASL family Solaris Local Security Checks NASL id SOLARIS10_121004.NASL description SunOS 5.10: sh patch. Date this patch was last updated by Sun : May/23/08 last seen 2018-09-01 modified 2018-08-13 plugin id 20859 published 2006-02-05 reporter Tenable source https://www.tenable.com/plugins/index.php?view=single&id=20859 title Solaris 10 (sparc) : 121004-04 NASL family Solaris Local Security Checks NASL id SOLARIS10_X86_121005.NASL description SunOS 5.10_x86: sh patch. Date this patch was last updated by Sun : May/23/08 last seen 2018-09-01 modified 2018-08-13 plugin id 20860 published 2006-02-05 reporter Tenable source https://www.tenable.com/plugins/index.php?view=single&id=20860 title Solaris 10 (x86) : 121005-04 NASL family Solaris Local Security Checks NASL id SOLARIS8_109324.NASL description SunOS 5.8: sh/jsh/rsh/pfsh patch. Date this patch was last updated by Sun : May/27/08 last seen 2020-06-01 modified 2020-06-02 plugin id 13320 published 2004-07-12 reporter This script is Copyright (C) 2004-2019 Tenable Network Security, Inc. source https://www.tenable.com/plugins/nessus/13320 title Solaris 8 (sparc) : 109324-10
Oval
| accepted | 2009-08-03T04:00:04.542-04:00 | ||||||||
| class | vulnerability | ||||||||
| contributors |
| ||||||||
| description | The Bourne shell (sh) in Solaris 8, 9, and 10 allows local users to cause a denial of service (sh crash) via an unspecified attack vector that causes sh processes to crash during creation of temporary files. | ||||||||
| family | unix | ||||||||
| id | oval:org.mitre.oval:def:881 | ||||||||
| status | accepted | ||||||||
| submitted | 2006-04-14T06:41:00.000-04:00 | ||||||||
| title | Bourne Shell Local-DoS Vulnerability | ||||||||
| version | 36 |
References
- http://secunia.com/advisories/19627
- http://secunia.com/advisories/21493
- http://securitytracker.com/id?1015902
- http://sunsolve.sun.com/search/document.do?assetkey=1-26-102282-1
- http://support.avaya.com/elmodocs2/security/ASA-2006-122.htm
- http://www.securityfocus.com/bid/17478
- http://www.vupen.com/english/advisories/2006/1333
- https://exchange.xforce.ibmcloud.com/vulnerabilities/25744
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A881