Vulnerabilities > CVE-2009-1673 - Local Denial Of Service vulnerability in SUN Solaris 9
Attack vector
LOCAL Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
NONE Availability impact
COMPLETE Summary
The kernel in Sun Solaris 9 allows local users to cause a denial of service (panic) by calling fstat with a first argument of AT_FDCWD.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
OS | 2 |
Nessus
NASL family Solaris Local Security Checks NASL id SOLARIS9_122300.NASL description SunOS 5.9: Kernel Patch. Date this patch was last updated by Sun : Nov/03/11 last seen 2020-06-01 modified 2020-06-02 plugin id 24858 published 2007-03-18 reporter This script is Copyright (C) 2007-2019 Tenable Network Security, Inc. source https://www.tenable.com/plugins/nessus/24858 title Solaris 9 (sparc) : 122300-61 NASL family Solaris Local Security Checks NASL id SOLARIS9_X86_122301.NASL description SunOS 5.9_x86: Kernel Patch. Date this patch was last updated by Sun : Nov/03/11 last seen 2020-06-01 modified 2020-06-02 plugin id 24861 published 2007-03-18 reporter This script is Copyright (C) 2007-2019 Tenable Network Security, Inc. source https://www.tenable.com/plugins/nessus/24861 title Solaris 9 (x86) : 122301-61
Oval
accepted | 2009-07-06T04:00:49.860-04:00 | ||||||||
class | vulnerability | ||||||||
contributors |
| ||||||||
definition_extensions |
| ||||||||
description | The kernel in Sun Solaris 9 allows local users to cause a denial of service (panic) by calling fstat with a first argument of AT_FDCWD. | ||||||||
family | unix | ||||||||
id | oval:org.mitre.oval:def:6256 | ||||||||
status | accepted | ||||||||
submitted | 2009-05-20T10:58:53.000-04:00 | ||||||||
title | Security Vulnerability in Solaris 9 fstat(2) System Call May Lead to a System Panic, Resulting in a Denial of Service (DoS) | ||||||||
version | 36 |
References
- http://osvdb.org/54464
- http://secunia.com/advisories/35103
- http://secunia.com/advisories/35119
- http://sunsolve.sun.com/search/document.do?assetkey=1-21-122300-40-1
- http://sunsolve.sun.com/search/document.do?assetkey=1-66-257988-1
- http://support.avaya.com/elmodocs2/security/ASA-2009-188.htm
- http://www.securityfocus.com/bid/34979
- http://www.securitytracker.com/id?1022232
- http://www.vupen.com/english/advisories/2009/1315
- http://www.vupen.com/english/advisories/2009/1388
- https://exchange.xforce.ibmcloud.com/vulnerabilities/50557
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6256