Vulnerabilities > CVE-2008-3666 - Local Denial of Service vulnerability in SUN Opensolaris, Solaris and Sunos
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
NONE Integrity impact
NONE Availability impact
COMPLETE Summary
Unspecified vulnerability in Sun Solaris 10 and OpenSolaris before snv_96 allows (1) context-dependent attackers to cause a denial of service (panic) via vectors involving creation of a crafted file and use of the sendfilev system call, as demonstrated by a file served by an Apache 2.2.x web server with EnableSendFile configured; and (2) local users to cause a denial of service (panic) via a call to the sendfile system call, as reachable through the sendfilev library.
Vulnerable Configurations
Nessus
NASL family Solaris Local Security Checks NASL id SOLARIS10_X86_137112.NASL description SunOS 5.10_x86: kernel patch. Date this patch was last updated by Sun : Oct/09/08 last seen 2018-09-01 modified 2018-08-13 plugin id 33209 published 2008-06-18 reporter Tenable source https://www.tenable.com/plugins/index.php?view=single&id=33209 title Solaris 10 (x86) : 137112-08 code #%NASL_MIN_LEVEL 80502 # @DEPRECATED@ # # This script has been deprecated as the associated patch is not # currently a recommended security fix. # # Disabled on 2011/09/17. # # (C) Tenable Network Security, Inc. # # if ( ! defined_func("bn_random") ) exit(0); include("compat.inc"); if(description) { script_id(33209); script_version("1.25"); script_name(english: "Solaris 10 (x86) : 137112-08"); script_cve_id("CVE-2008-2706", "CVE-2008-2710", "CVE-2008-3549", "CVE-2008-3666", "CVE-2008-3875", "CVE-2008-6024"); script_set_attribute(attribute: "synopsis", value: "The remote host is missing Sun Security Patch number 137112-08"); script_set_attribute(attribute: "description", value: 'SunOS 5.10_x86: kernel patch. Date this patch was last updated by Sun : Oct/09/08'); script_set_attribute(attribute: "solution", value: "You should install this patch for your system to be up-to-date."); script_set_attribute(attribute: "see_also", value: "https://getupdates.oracle.com/readme/137112-08"); script_set_cvss_base_vector("CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C"); script_cwe_id(399); script_set_attribute(attribute:"plugin_publication_date", value: "2008/06/18"); script_cvs_date("Date: 2019/10/25 13:36:24"); script_end_attributes(); script_summary(english: "Check for patch 137112-08"); script_category(ACT_GATHER_INFO); script_copyright(english:"This script is Copyright (C) 2008-2019 Tenable Network Security, Inc."); family["english"] = "Solaris Local Security Checks"; script_family(english:family["english"]); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Solaris/showrev"); exit(0); } # Deprecated. exit(0, "The associated patch is not currently a recommended security fix.");NASL family Solaris Local Security Checks NASL id SOLARIS10_137111.NASL description SunOS 5.10: kernel patch. Date this patch was last updated by Sun : Oct/08/08 last seen 2018-09-02 modified 2018-08-13 plugin id 33206 published 2008-06-18 reporter Tenable source https://www.tenable.com/plugins/index.php?view=single&id=33206 title Solaris 10 (sparc) : 137111-08 code #%NASL_MIN_LEVEL 80502 # @DEPRECATED@ # # This script has been deprecated as the associated patch is not # currently a recommended security fix. # # Disabled on 2011/09/17. # # (C) Tenable Network Security, Inc. # # if ( ! defined_func("bn_random") ) exit(0); include("compat.inc"); if(description) { script_id(33206); script_version("1.25"); script_name(english: "Solaris 10 (sparc) : 137111-08"); script_cve_id("CVE-2008-2706", "CVE-2008-2710", "CVE-2008-3549", "CVE-2008-3666", "CVE-2008-3875", "CVE-2008-6024"); script_set_attribute(attribute: "synopsis", value: "The remote host is missing Sun Security Patch number 137111-08"); script_set_attribute(attribute: "description", value: 'SunOS 5.10: kernel patch. Date this patch was last updated by Sun : Oct/08/08'); script_set_attribute(attribute: "solution", value: "You should install this patch for your system to be up-to-date."); script_set_attribute(attribute: "see_also", value: "https://getupdates.oracle.com/readme/137111-08"); script_set_cvss_base_vector("CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C"); script_cwe_id(399); script_set_attribute(attribute:"plugin_publication_date", value: "2008/06/18"); script_cvs_date("Date: 2019/10/25 13:36:24"); script_end_attributes(); script_summary(english: "Check for patch 137111-08"); script_category(ACT_GATHER_INFO); script_copyright(english:"This script is Copyright (C) 2008-2019 Tenable Network Security, Inc."); family["english"] = "Solaris Local Security Checks"; script_family(english:family["english"]); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Solaris/showrev"); exit(0); } # Deprecated. exit(0, "The associated patch is not currently a recommended security fix.");
Oval
| accepted | 2008-09-22T04:00:21.027-04:00 | ||||||||
| class | vulnerability | ||||||||
| contributors |
| ||||||||
| definition_extensions |
| ||||||||
| description | Unspecified vulnerability in Sun Solaris 10 and OpenSolaris before snv_96 allows (1) context-dependent attackers to cause a denial of service (panic) via vectors involving creation of a crafted file and use of the sendfilev system call, as demonstrated by a file served by an Apache 2.2.x web server with EnableSendFile configured; and (2) local users to cause a denial of service (panic) via a call to the sendfile system call, as reachable through the sendfilev library. | ||||||||
| family | unix | ||||||||
| id | oval:org.mitre.oval:def:5128 | ||||||||
| status | accepted | ||||||||
| submitted | 2008-08-14T11:25:43.000-04:00 | ||||||||
| title | A Security Vulnerability in Solaris 10 involving the sendfilev() system call could result in Denial of Service (DoS) due to System Panic | ||||||||
| version | 36 |
References
- http://osvdb.org/47375
- http://secunia.com/advisories/31426
- http://sunsolve.sun.com/search/document.do?assetkey=1-26-239186-1
- http://www.securityfocus.com/bid/30654
- http://www.securitytracker.com/id?1020666
- http://www.vupen.com/english/advisories/2008/2337
- https://exchange.xforce.ibmcloud.com/vulnerabilities/44396
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5128