Vulnerabilities > CVE-2006-3824 - Local Information Disclosure vulnerability in SUN Solaris 10.0
Attack vector
LOCAL Attack complexity
LOW Privileges required
NONE Confidentiality impact
COMPLETE Integrity impact
NONE Availability impact
NONE Summary
systeminfo.c for Sun Solaris allows local users to read kernel memory via a 0 variable count argument to the sysinfo system call, which causes a -1 argument to be used by the copyout function. NOTE: this issue has been referred to as an integer overflow, but it is probably more like a signedness error or integer underflow. This vulnerability is addressed in the following product releases: Sun, Solaris, 10_x86 patch 118833-09 or later Sun, Solaris, 10 patch 118855-06 or later
Vulnerable Configurations
Part | Description | Count |
---|---|---|
OS | 2 |
Exploit-Db
description Solaris <= 10 sysinfo() Local Kernel Memory Disclosure Exploit. CVE-2006-3824. Local exploit for solaris platform id EDB-ID:2067 last seen 2016-01-31 modified 2006-07-24 published 2006-07-24 reporter prdelka source https://www.exploit-db.com/download/2067/ title Solaris <= 10 sysinfo Local Kernel Memory Disclosure Exploit description Solaris 10 sysinfo(2) Local Kernel Memory Disclosure Exploit. CVE-2006-3824. Local exploit for solaris platform id EDB-ID:2241 last seen 2016-01-31 modified 2006-08-22 published 2006-08-22 reporter Marco Ivaldi source https://www.exploit-db.com/download/2241/ title Solaris 10 sysinfo2 - Local Kernel Memory Disclosure Exploit
Packetstorm
data source | https://packetstormsecurity.com/files/download/49423/sysinforaptor.txt |
id | PACKETSTORM:49423 |
last seen | 2016-12-05 |
published | 2006-08-27 |
reporter | Marco Ivaldi |
source | https://packetstormsecurity.com/files/49423/sysinforaptor.txt.html |
title | sysinforaptor.txt |
Seebug
bulletinFamily exploit description No description provided by source. id SSV:63877 last seen 2017-11-19 modified 2014-07-01 published 2014-07-01 reporter Root source https://www.seebug.org/vuldb/ssvid-63877 title Solaris 10 sysinfo(2) - Local Kernel Memory Disclosure Exploit bulletinFamily exploit description No description provided by source. id SSV:5289 last seen 2017-11-19 modified 2006-10-27 published 2006-10-27 reporter Root source https://www.seebug.org/vuldb/ssvid-5289 title Solaris 10 sysinfo(2) Local Kernel Memory Disclosure Exploit
References
- http://secunia.com/advisories/21148
- http://securitytracker.com/id?1016555
- http://sunsolve.sun.com/search/document.do?assetkey=1-26-102343-1
- http://www.idefense.com/intelligence/vulnerabilities/display.php?id=410
- http://www.securityfocus.com/archive/1/440849/100/100/threaded
- http://www.securityfocus.com/archive/1/440986/100/100/threaded
- http://www.securityfocus.com/bid/19104
- http://www.vupen.com/english/advisories/2006/2936
- https://exchange.xforce.ibmcloud.com/vulnerabilities/27901