Vulnerabilities > CVE-2007-3469 - Local Denial of Service vulnerability in SUN Solaris 10.0
Attack vector
LOCAL Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
NONE Availability impact
COMPLETE Summary
Unspecified vulnerability in the TCP Loopback/Fusion implementation in Sun Solaris 10 allows local users to cause a denial of service (resource exhaustion and service hang) via unspecified vectors.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| OS | 2 |
Nessus
NASL family Solaris Local Security Checks NASL id SOLARIS10_125100.NASL description SunOS 5.10: Kernel Update patch. Date this patch was last updated by Sun : Jun/26/07 last seen 2018-09-01 modified 2018-08-13 plugin id 24954 published 2007-04-05 reporter Tenable source https://www.tenable.com/plugins/index.php?view=single&id=24954 title Solaris 10 (sparc) : 125100-10 code #%NASL_MIN_LEVEL 80502 # @DEPRECATED@ # # This script has been deprecated as the associated patch is not # currently a recommended security fix. # # Disabled on 2011/10/24. # # # (C) Tenable Network Security, Inc. # # if ( ! defined_func("bn_random") ) exit(0); include("compat.inc"); if(description) { script_id(24954); script_version("1.32"); script_name(english: "Solaris 10 (sparc) : 125100-10"); script_cve_id("CVE-2007-3469", "CVE-2007-4126"); script_set_attribute(attribute: "synopsis", value: "The remote host is missing Sun Security Patch number 125100-10"); script_set_attribute(attribute: "description", value: 'SunOS 5.10: Kernel Update patch. Date this patch was last updated by Sun : Jun/26/07'); script_set_attribute(attribute: "solution", value: "You should install this patch for your system to be up-to-date."); script_set_attribute(attribute: "see_also", value: "http://download.oracle.com/sunalerts/1017347.1.html"); script_set_attribute(attribute: "cvss_vector", value: "CVSS2#AV:L/AC:L/Au:N/C:N/I:N/A:C"); script_set_attribute(attribute:"plugin_publication_date", value: "2007/04/05"); script_cvs_date("Date: 2019/10/25 13:36:23"); script_set_attribute(attribute:"vuln_publication_date", value: "2007/06/27"); script_end_attributes(); script_summary(english: "Check for patch 125100-10"); script_category(ACT_GATHER_INFO); script_copyright(english:"This script is Copyright (C) 2007-2019 Tenable Network Security, Inc."); family["english"] = "Solaris Local Security Checks"; script_family(english:family["english"]); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Solaris/showrev"); exit(0); } # Deprecated. exit(0, "The associated patch is not currently a recommended security fix.");NASL family Solaris Local Security Checks NASL id SOLARIS10_X86_125101.NASL description SunOS 5.10_x86: Kernel Update patch. Date this patch was last updated by Sun : Jun/26/07 last seen 2018-09-01 modified 2018-08-13 plugin id 24851 published 2007-03-18 reporter Tenable source https://www.tenable.com/plugins/index.php?view=single&id=24851 title Solaris 10 (x86) : 125101-10 code #%NASL_MIN_LEVEL 80502 # @DEPRECATED@ # # This script has been deprecated as the associated patch is not # currently a recommended security fix. # # Disabled on 2011/10/24. # # # (C) Tenable Network Security, Inc. # # if ( ! defined_func("bn_random") ) exit(0); include("compat.inc"); if(description) { script_id(24851); script_version("1.31"); script_name(english: "Solaris 10 (x86) : 125101-10"); script_cve_id("CVE-2007-3469", "CVE-2007-4126"); script_set_attribute(attribute: "synopsis", value: "The remote host is missing Sun Security Patch number 125101-10"); script_set_attribute(attribute: "description", value: 'SunOS 5.10_x86: Kernel Update patch. Date this patch was last updated by Sun : Jun/26/07'); script_set_attribute(attribute: "solution", value: "You should install this patch for your system to be up-to-date."); script_set_attribute(attribute: "see_also", value: "http://download.oracle.com/sunalerts/1017347.1.html"); script_set_attribute(attribute: "cvss_vector", value: "CVSS2#AV:L/AC:L/Au:N/C:N/I:N/A:C"); script_set_attribute(attribute:"plugin_publication_date", value: "2007/03/18"); script_cvs_date("Date: 2019/10/25 13:36:24"); script_set_attribute(attribute:"vuln_publication_date", value: "2007/06/27"); script_end_attributes(); script_summary(english: "Check for patch 125101-10"); script_category(ACT_GATHER_INFO); script_copyright(english:"This script is Copyright (C) 2007-2019 Tenable Network Security, Inc."); family["english"] = "Solaris Local Security Checks"; script_family(english:family["english"]); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Solaris/showrev"); exit(0); } # Deprecated. exit(0, "The associated patch is not currently a recommended security fix.");
Oval
| accepted | 2007-09-06T09:13:36.390-04:00 | ||||||||
| class | vulnerability | ||||||||
| contributors |
| ||||||||
| definition_extensions |
| ||||||||
| description | Unspecified vulnerability in the TCP Loopback/Fusion implementation in Sun Solaris 10 allows local users to cause a denial of service (resource exhaustion and service hang) via unspecified vectors. | ||||||||
| family | unix | ||||||||
| id | oval:org.mitre.oval:def:8653 | ||||||||
| status | accepted | ||||||||
| submitted | 2007-08-03T10:36:57.000-04:00 | ||||||||
| title | A Security Vulnerability in the TCP Loopback/Fusion Code May Lead to a System Hang Resulting in a Denial of Service (DoS) | ||||||||
| version | 36 |
References
- http://osvdb.org/36610
- http://secunia.com/advisories/25847
- http://sunsolve.sun.com/search/document.do?assetkey=1-26-102963-1
- http://www.securityfocus.com/bid/24685
- http://www.securitytracker.com/id?1018326
- http://www.vupen.com/english/advisories/2007/2366
- https://exchange.xforce.ibmcloud.com/vulnerabilities/35128
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8653