Vulnerabilities > CVE-2006-3824 - Local Information Disclosure vulnerability in SUN Solaris 10.0

047910
CVSS 4.9 - MEDIUM
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
COMPLETE
Integrity impact
NONE
Availability impact
NONE
local
low complexity
sun
exploit available
NVD
Published: 2006-07-25
Updated: 2018-10-17

Summary

systeminfo.c for Sun Solaris allows local users to read kernel memory via a 0 variable count argument to the sysinfo system call, which causes a -1 argument to be used by the copyout function. NOTE: this issue has been referred to as an integer overflow, but it is probably more like a signedness error or integer underflow. This vulnerability is addressed in the following product releases: Sun, Solaris, 10_x86 patch 118833-09 or later Sun, Solaris, 10 patch 118855-06 or later

Vulnerable Configurations

Part Description Count
OS
Sun
2

Exploit-Db

  • descriptionSolaris <= 10 sysinfo() Local Kernel Memory Disclosure Exploit. CVE-2006-3824. Local exploit for solaris platform
    idEDB-ID:2067
    last seen2016-01-31
    modified2006-07-24
    published2006-07-24
    reporterprdelka
    sourcehttps://www.exploit-db.com/download/2067/
    titleSolaris <= 10 sysinfo Local Kernel Memory Disclosure Exploit
  • descriptionSolaris 10 sysinfo(2) Local Kernel Memory Disclosure Exploit. CVE-2006-3824. Local exploit for solaris platform
    idEDB-ID:2241
    last seen2016-01-31
    modified2006-08-22
    published2006-08-22
    reporterMarco Ivaldi
    sourcehttps://www.exploit-db.com/download/2241/
    titleSolaris 10 sysinfo2 - Local Kernel Memory Disclosure Exploit

Packetstorm

data sourcehttps://packetstormsecurity.com/files/download/49423/sysinforaptor.txt
idPACKETSTORM:49423
last seen2016-12-05
published2006-08-27
reporterMarco Ivaldi
sourcehttps://packetstormsecurity.com/files/49423/sysinforaptor.txt.html
titlesysinforaptor.txt

Seebug

  • bulletinFamilyexploit
    descriptionNo description provided by source.
    idSSV:63877
    last seen2017-11-19
    modified2014-07-01
    published2014-07-01
    reporterRoot
    sourcehttps://www.seebug.org/vuldb/ssvid-63877
    titleSolaris 10 sysinfo(2) - Local Kernel Memory Disclosure Exploit
  • bulletinFamilyexploit
    descriptionNo description provided by source.
    idSSV:5289
    last seen2017-11-19
    modified2006-10-27
    published2006-10-27
    reporterRoot
    sourcehttps://www.seebug.org/vuldb/ssvid-5289
    titleSolaris 10 sysinfo(2) Local Kernel Memory Disclosure Exploit

References