Vulnerabilities > CVE-2009-2187 - Resource Management Errors vulnerability in SUN Opensolaris and Solaris
Attack vector
LOCAL Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
NONE Availability impact
COMPLETE Summary
Multiple memory leaks in the (1) IP and (2) IPv6 multicast implementation in the kernel in Sun Solaris 10, and OpenSolaris snv_67 through snv_93, allow local users to cause a denial of service (memory consumption) via vectors related to the association of (a) DL_ENABMULTI_REQ and (b) DL_DISABMULTI_REQ messages with ARP messages.
Vulnerable Configurations
Common Weakness Enumeration (CWE)
References
- http://bugs.opensolaris.org/view_bug.do?bug_id=6709252
- http://bugs.opensolaris.org/view_bug.do?bug_id=6731600
- http://secunia.com/advisories/35552
- http://sunsolve.sun.com/search/document.do?assetkey=1-21-141414-01-1
- http://sunsolve.sun.com/search/document.do?assetkey=1-66-262408-1
- http://www.securityfocus.com/bid/35474