Vulnerabilities > CVE-2008-3839 - Local Denial of Service vulnerability in SUN Opensolaris and Solaris

CVSS 4.7 - MEDIUM

Attack vector

LOCAL

Attack complexity

MEDIUM

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

COMPLETE

local

sun

nessus

NVD

Published: 2008-08-27

Updated: 2017-08-08

Summary

Unspecified vulnerability in the NFS module in the kernel in Sun Solaris 10 and OpenSolaris snv_59 through snv_87, when configured as an NFS server without the nodevices option, allows local users to cause a denial of service (panic) via unspecified vectors.

Vulnerable Configurations

Part	Description	Count
OS	Sun SUN Opensolaris * SUN Opensolaris Snv_59 SUN Opensolaris Snv_60 SUN Opensolaris Snv_61 SUN Opensolaris Snv_62 SUN Opensolaris Snv_63 SUN Opensolaris Snv_64 SUN Opensolaris Snv_65 SUN Opensolaris Snv_66 SUN Opensolaris Snv_67 SUN Opensolaris Snv_68 SUN Opensolaris Snv_69 SUN Opensolaris Snv_70 SUN Opensolaris Snv_71 SUN Opensolaris Snv_72 SUN Opensolaris Snv_73 SUN Opensolaris Snv_74 SUN Opensolaris Snv_75 SUN Opensolaris Snv_76 SUN Opensolaris Snv_77 SUN Opensolaris Snv_78 SUN Opensolaris Snv_79 SUN Opensolaris Snv_80 SUN Opensolaris Snv_81 SUN Opensolaris Snv_82 SUN Opensolaris Snv_83 SUN Opensolaris Snv_84 SUN Opensolaris Snv_85 SUN Opensolaris Snv_86 SUN Opensolaris Snv_87 SUN Solaris 10	89

Nessus

NASL family	Solaris Local Security Checks
NASL id	SOLARIS10_138070.NASL
description	SunOS 5.10: nfssrv and rpcsec patch. Date this patch was last updated by Sun : Aug/21/08
last seen	2018-09-01
modified	2018-08-13
plugin id	34066
published	2008-09-03
reporter	Tenable
source	https://www.tenable.com/plugins/index.php?view=single&id=34066
title	Solaris 10 (sparc) : 138070-03
code	#%NASL_MIN_LEVEL 80502 # @DEPRECATED@ # # This script has been deprecated as the associated patch is not # currently a recommended security fix. # # Disabled on 2011/09/17. # # (C) Tenable Network Security, Inc. # # if ( ! defined_func("bn_random") ) exit(0); include("compat.inc"); if(description) { script_id(34066); script_version("1.12"); script_name(english: "Solaris 10 (sparc) : 138070-03"); script_cve_id("CVE-2008-3838", "CVE-2008-3839"); script_set_attribute(attribute: "synopsis", value: "The remote host is missing Sun Security Patch number 138070-03"); script_set_attribute(attribute: "description", value: 'SunOS 5.10: nfssrv and rpcsec patch. Date this patch was last updated by Sun : Aug/21/08'); script_set_attribute(attribute: "solution", value: "You should install this patch for your system to be up-to-date."); script_set_attribute(attribute: "see_also", value: "https://getupdates.oracle.com/readme/138070-03"); script_set_cvss_base_vector("CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C"); script_cwe_id(20); script_set_attribute(attribute:"plugin_publication_date", value: "2008/09/03"); script_cvs_date("Date: 2019/10/25 13:36:24"); script_end_attributes(); script_summary(english: "Check for patch 138070-03"); script_category(ACT_GATHER_INFO); script_copyright(english:"This script is Copyright (C) 2008-2019 Tenable Network Security, Inc."); family["english"] = "Solaris Local Security Checks"; script_family(english:family["english"]); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Solaris/showrev"); exit(0); } # Deprecated. exit(0, "The associated patch is not currently a recommended security fix.");

NASL family	Solaris Local Security Checks
NASL id	SOLARIS10_X86_138071.NASL
description	SunOS 5.10_x86: nfssrv and rpcsec patch. Date this patch was last updated by Sun : Aug/20/08
last seen	2018-09-01
modified	2018-08-13
plugin id	34067
published	2008-09-03
reporter	Tenable
source	https://www.tenable.com/plugins/index.php?view=single&id=34067
title	Solaris 10 (x86) : 138071-03
code	#%NASL_MIN_LEVEL 80502 # @DEPRECATED@ # # This script has been deprecated as the associated patch is not # currently a recommended security fix. # # Disabled on 2011/09/17. # # (C) Tenable Network Security, Inc. # # if ( ! defined_func("bn_random") ) exit(0); include("compat.inc"); if(description) { script_id(34067); script_version("1.13"); script_name(english: "Solaris 10 (x86) : 138071-03"); script_cve_id("CVE-2008-3838", "CVE-2008-3839"); script_set_attribute(attribute: "synopsis", value: "The remote host is missing Sun Security Patch number 138071-03"); script_set_attribute(attribute: "description", value: 'SunOS 5.10_x86: nfssrv and rpcsec patch. Date this patch was last updated by Sun : Aug/20/08'); script_set_attribute(attribute: "solution", value: "You should install this patch for your system to be up-to-date."); script_set_attribute(attribute: "see_also", value: "https://getupdates.oracle.com/readme/138071-03"); script_set_cvss_base_vector("CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C"); script_cwe_id(20); script_set_attribute(attribute:"plugin_publication_date", value: "2008/09/03"); script_cvs_date("Date: 2019/10/25 13:36:24"); script_end_attributes(); script_summary(english: "Check for patch 138071-03"); script_category(ACT_GATHER_INFO); script_copyright(english:"This script is Copyright (C) 2008-2019 Tenable Network Security, Inc."); family["english"] = "Solaris Local Security Checks"; script_family(english:family["english"]); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Solaris/showrev"); exit(0); } # Deprecated. exit(0, "The associated patch is not currently a recommended security fix.");

Summary

Vulnerable Configurations

Nessus

References