Sun Solaris Special File System Local Denial of Service Vulnerability
BID:25510
Info
Sun Solaris Special File System Local Denial of Service Vulnerability
| Bugtraq ID: | 25510 |
| Class: | Failure to Handle Exceptional Conditions |
| CVE: |
CVE-2007-4732 |
| Remote: | No |
| Local: | Yes |
| Published: | Aug 31 2007 12:00AM |
| Updated: | May 07 2015 05:35PM |
| Credit: | The vendor disclosed this issue. |
| Vulnerable: |
Sun Solaris 9_x86 Sun Solaris 9_sparc Sun Solaris 8_x86 Sun Solaris 8_sparc Sun Solaris 10_x86 Sun Solaris 10_sparc Avaya Interactive Response 1.3 Avaya Interactive Response 2.0 Avaya CMS Server 13.0 Avaya CMS Server 12.0 Avaya CMS Server 14.0 Avaya CMS Server 13.1 |
| Not Vulnerable: | |
Discussion
Sun Solaris Special File System Local Denial of Service Vulnerability
Sun Solaris is prone to a local denial-of-service vulnerability.
This issue stems from a NULL-pointer error caused by a function of the Special File System (SPECFS). Local attackers may exploit this issue to trigger kernel panics or system hangs, denying service to legitimate users.
Solaris 8, 9, and 10 SPARC and x86 are affected by this issue.
Sun Solaris is prone to a local denial-of-service vulnerability.
This issue stems from a NULL-pointer error caused by a function of the Special File System (SPECFS). Local attackers may exploit this issue to trigger kernel panics or system hangs, denying service to legitimate users.
Solaris 8, 9, and 10 SPARC and x86 are affected by this issue.
Exploit / POC
Sun Solaris Special File System Local Denial of Service Vulnerability
Currently we are not aware of any exploits for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Currently we are not aware of any exploits for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution / Fix
Sun Solaris Special File System Local Denial of Service Vulnerability
Solution:
Sun has released an advisory and fixes to address this issue. Please see the references for more information.
Sun Solaris 8_x86
Sun Solaris 8_sparc
Sun Solaris 9_x86
Solution:
Sun has released an advisory and fixes to address this issue. Please see the references for more information.
Sun Solaris 8_x86
Sun Solaris 8_sparc
Sun Solaris 9_x86
References
Sun Solaris Special File System Local Denial of Service Vulnerability
References:
References:
- Sun Solaris Home Page (Sun Microsystems)
- ASA-2007-374 A Security Vulnerability With the Special File System (SPECFS) strf (Avaya)
- Sun Alert ID: 103009 (Sun Microsystems)