Sun Solaris Kernel Unspecified Local Denial of Service Vulnerability

Bugtraq ID:	21372
Class:	Race Condition Error
CVE:
Remote:	No
Local:	Yes
Published:	Nov 30 2006 12:00AM
Updated:	Jan 17 2007 05:00PM
Credit:	The vendor disclosed this issue.
Vulnerable:	Sun Solaris 9_x86 Sun Solaris 9 Sun Solaris 8_x86 Sun Solaris 8_sparc Sun Solaris 10.0_x86 Sun Solaris 10.0 Avaya Interactive Response Avaya CMS Server 13.0 Avaya CMS Server 12.0 Avaya CMS Server 11.0 Avaya CMS Server 9.0
Not Vulnerable:

Sun Solaris Kernel Unspecified Local Denial of Service Vulnerability

Sun Solaris is prone to a local denial-of-service vulnerability.

An attacker can exploit this issue to crash the affected computer, denying service to legitimate users.

Solaris versions 8, 9, and 10 are vulnerable.

Sun Solaris Kernel Unspecified Local Denial of Service Vulnerability

Currently we are not aware of any exploits for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected]:[email protected].

Sun Solaris Kernel Unspecified Local Denial of Service Vulnerability

Solution:
The vendor released an advisory and fixes to address this issue. Please see the references for more information.

Sun Solaris Kernel Unspecified Local Denial of Service Vulnerability

References:

• ASA-2006-263 - Solaris Kernel May Allow a Denial of Service Condition to Occur (Avaya)
  
• Sun Advisory 102574: A Security Vulnerability in the Solaris Kernel May Allow a (Sun Microsystems)
  
• Sun Solaris Homepage (Sun Microsystems)