Vulnerabilities > CVE-2009-0069 - Resource Management Errors vulnerability in SUN Opensolaris and Solaris
Attack vector
LOCAL Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
NONE Availability impact
COMPLETE Summary
Unspecified vulnerability in the nfs4rename_persistent_fh function in the NFS 4 (aka NFSv4) client in the kernel in Sun Solaris 10 and OpenSolaris before snv_102 allows local users to cause a denial of service (recursive mutex_enter and panic) via unspecified vectors.
Vulnerable Configurations
Common Weakness Enumeration (CWE)
Nessus
NASL family Solaris Local Security Checks NASL id SOLARIS10_139466.NASL description SunOS 5.10: nfs patch. Date this patch was last updated by Sun : Feb/09/09 last seen 2018-09-02 modified 2018-08-13 plugin id 35411 published 2009-01-19 reporter Tenable source https://www.tenable.com/plugins/index.php?view=single&id=35411 title Solaris 10 (sparc) : 139466-04 code #%NASL_MIN_LEVEL 80502 # @DEPRECATED@ # # This script has been deprecated as the associated patch is not # currently a recommended security fix. # # Disabled on 2011/09/17. # # (C) Tenable Network Security, Inc. # # if ( ! defined_func("bn_random") ) exit(0); include("compat.inc"); if(description) { script_id(35411); script_version("1.14"); script_name(english: "Solaris 10 (sparc) : 139466-04"); script_cve_id("CVE-2009-0069"); script_set_attribute(attribute: "synopsis", value: "The remote host is missing Sun Security Patch number 139466-04"); script_set_attribute(attribute: "description", value: 'SunOS 5.10: nfs patch. Date this patch was last updated by Sun : Feb/09/09'); script_set_attribute(attribute: "solution", value: "You should install this patch for your system to be up-to-date."); script_set_attribute(attribute: "see_also", value: "https://getupdates.oracle.com/readme/139466-04"); script_set_cvss_base_vector("CVSS2#AV:L/AC:L/Au:N/C:N/I:N/A:C"); script_cwe_id(399); script_set_attribute(attribute:"plugin_publication_date", value: "2009/01/19"); script_cvs_date("Date: 2019/10/25 13:36:25"); script_end_attributes(); script_summary(english: "Check for patch 139466-04"); script_category(ACT_GATHER_INFO); script_copyright(english:"This script is Copyright (C) 2009-2019 Tenable Network Security, Inc."); family["english"] = "Solaris Local Security Checks"; script_family(english:family["english"]); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Solaris/showrev"); exit(0); } # Deprecated. exit(0, "The associated patch is not currently a recommended security fix.");NASL family Solaris Local Security Checks NASL id SOLARIS10_X86_139467.NASL description SunOS 5.10_x86: nfs patch. Date this patch was last updated by Sun : Feb/09/09 last seen 2018-09-01 modified 2018-08-13 plugin id 35417 published 2009-01-19 reporter Tenable source https://www.tenable.com/plugins/index.php?view=single&id=35417 title Solaris 10 (x86) : 139467-04 code #%NASL_MIN_LEVEL 80502 # @DEPRECATED@ # # This script has been deprecated as the associated patch is not # currently a recommended security fix. # # Disabled on 2011/09/17. # # (C) Tenable Network Security, Inc. # # if ( ! defined_func("bn_random") ) exit(0); include("compat.inc"); if(description) { script_id(35417); script_version("1.13"); script_name(english: "Solaris 10 (x86) : 139467-04"); script_cve_id("CVE-2009-0069"); script_set_attribute(attribute: "synopsis", value: "The remote host is missing Sun Security Patch number 139467-04"); script_set_attribute(attribute: "description", value: 'SunOS 5.10_x86: nfs patch. Date this patch was last updated by Sun : Feb/09/09'); script_set_attribute(attribute: "solution", value: "You should install this patch for your system to be up-to-date."); script_set_attribute(attribute: "see_also", value: "https://getupdates.oracle.com/readme/139467-04"); script_set_cvss_base_vector("CVSS2#AV:L/AC:L/Au:N/C:N/I:N/A:C"); script_cwe_id(399); script_set_attribute(attribute:"plugin_publication_date", value: "2009/01/19"); script_cvs_date("Date: 2019/10/25 13:36:25"); script_end_attributes(); script_summary(english: "Check for patch 139467-04"); script_category(ACT_GATHER_INFO); script_copyright(english:"This script is Copyright (C) 2009-2019 Tenable Network Security, Inc."); family["english"] = "Solaris Local Security Checks"; script_family(english:family["english"]); script_dependencies("ssh_get_info.nasl"); script_require_keys("Host/Solaris/showrev"); exit(0); } # Deprecated. exit(0, "The associated patch is not currently a recommended security fix.");
References
- http://mail.opensolaris.org/pipermail/onnv-notify/2008-October/015342.html
- http://secunia.com/advisories/33361
- http://sunsolve.sun.com/search/document.do?assetkey=1-21-139466-02-1
- http://sunsolve.sun.com/search/document.do?assetkey=1-66-248566-1
- http://www.securityfocus.com/bid/33128
- http://www.securitytracker.com/id?1021519
- http://www.vupen.com/english/advisories/2009/0030
- https://exchange.xforce.ibmcloud.com/vulnerabilities/47750