Vulnerabilities > CVE-2007-3248 - Remote IPv6 IPSec Packet Denial of Service vulnerability in SUN Solaris 10.0
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
NONE Availability impact
COMPLETE Summary
Unspecified vulnerability in Sun Solaris 10 before 20070614, when IPv6 interfaces are present but not configured for IPsec, allows remote attackers to cause a denial of service (system crash) via certain network traffic.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| OS | 2 |
Oval
| accepted | 2007-08-01T22:26:14.078-04:00 | ||||||||
| class | vulnerability | ||||||||
| contributors |
| ||||||||
| definition_extensions |
| ||||||||
| description | Unspecified vulnerability in Sun Solaris 10 before 20070614, when IPv6 interfaces are present but not configured for IPsec, allows remote attackers to cause a denial of service (system crash) via certain network traffic. | ||||||||
| family | unix | ||||||||
| id | oval:org.mitre.oval:def:1444 | ||||||||
| status | accepted | ||||||||
| submitted | 2007-06-19T14:30:00.000-04:00 | ||||||||
| title | Security Vulnerability in IPv6 Implementation (ip6(7p)) Related to the Handling of IPsec Packets may Lead to a System Panic, Resulting in a Denial of Service (DoS) | ||||||||
| version | 35 |
References
- http://osvdb.org/36593
- http://secunia.com/advisories/25671
- http://sunsolve.sun.com/search/document.do?assetkey=1-26-102919-1
- http://www.securityfocus.com/bid/24473
- http://www.securitytracker.com/id?1018252
- http://www.vupen.com/english/advisories/2007/2211
- https://exchange.xforce.ibmcloud.com/vulnerabilities/34861
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1444