Attack vector
LOCAL Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
NONE Integrity impact
NONE Availability impact
COMPLETE Published: 2007-05-02
Updated: 2018-10-30
Summary
Unspecified vulnerability in Sun Solaris 9, when Solaris Auditing (BSM) is enabled for file read, write, attribute modify, create, or delete audit classes, allows local users to cause a denial of service (panic) via unknown vectors, possibly related to the audit_savepath function. The vendor has addressed this issue with the following patches: Sun Solaris 9_x86: Sun x86 Solaris 9 Patch 122301-06 http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21 -122301-06-1 Sun Solaris 9: Sun SPARC Solaris 9 Patch 122300-06 http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21 -122300-06-1
Vulnerable Configurations
Part | Description | Count |
OS | Sun | 2 |
Nessus
NASL family | Solaris Local Security Checks |
NASL id | SOLARIS9_122300.NASL |
description | SunOS 5.9: Kernel Patch. Date this patch was last updated by Sun : Nov/03/11 |
last seen | 2020-06-01 |
modified | 2020-06-02 |
plugin id | 24858 |
published | 2007-03-18 |
reporter | This script is Copyright (C) 2007-2019 Tenable Network Security, Inc. |
source | https://www.tenable.com/plugins/nessus/24858 |
title | Solaris 9 (sparc) : 122300-61 |
NASL family | Solaris Local Security Checks |
NASL id | SOLARIS9_X86_122301.NASL |
description | SunOS 5.9_x86: Kernel Patch. Date this patch was last updated by Sun : Nov/03/11 |
last seen | 2020-06-01 |
modified | 2020-06-02 |
plugin id | 24861 |
published | 2007-03-18 |
reporter | This script is Copyright (C) 2007-2019 Tenable Network Security, Inc. |
source | https://www.tenable.com/plugins/nessus/24861 |
title | Solaris 9 (x86) : 122301-61 |
Oval
accepted | 2007-07-18T15:57:48.292-04:00 |
class | vulnerability |
contributors | name | Pai Peng | organization | Opsware, Inc. |
|
description | Unspecified vulnerability in Sun Solaris 9, when Solaris Auditing (BSM) is enabled for file read, write, attribute modify, create, or delete audit classes, allows local users to cause a denial of service (panic) via unknown vectors, possibly related to the audit_savepath function. |
family | unix |
id | oval:org.mitre.oval:def:1085 |
status | accepted |
submitted | 2007-06-15T09:00:00.000-04:00 |
title | Solaris 9 Systems With Solaris Auditing (BSM) Enabled may Panic if Certain Audit Classes are Being Audited |
version | 36 |