Vulnerabilities > CVE-2007-2529 - Local Denial Of Service vulnerability in Sun Solaris ACE_SETACL
Attack vector
LOCAL Attack complexity
LOW Privileges required
NONE Confidentiality impact
COMPLETE Integrity impact
COMPLETE Availability impact
COMPLETE Summary
Integer signedness error in the acl (facl) system call in Solaris 10 before 20070507 allows local users to cause a denial of service (kernel panic) and possibly gain privileges via a certain argument, related to ACE_SETACL.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| OS | 2 |
Oval
| accepted | 2007-07-18T15:57:49.919-04:00 | ||||
| class | vulnerability | ||||
| contributors |
| ||||
| description | Integer signedness error in the acl (facl) system call in Solaris 10 before 20070507 allows local users to cause a denial of service (kernel panic) and possibly gain privileges via a certain argument, related to ACE_SETACL. | ||||
| family | unix | ||||
| id | oval:org.mitre.oval:def:1669 | ||||
| status | accepted | ||||
| submitted | 2007-06-15T09:00:00.000-04:00 | ||||
| title | Security Vulnerability Relating to the acl(2) System Call May Allow Denial of Service (DoS) to the System | ||||
| version | 36 |
References
- http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=524
- http://osvdb.org/34906
- http://secunia.com/advisories/25162
- http://securitytracker.com/id?1018009
- http://sunsolve.sun.com/search/document.do?assetkey=1-26-102869-1
- http://www.securityfocus.com/bid/23863
- http://www.vupen.com/english/advisories/2007/1683
- https://exchange.xforce.ibmcloud.com/vulnerabilities/34147
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1669