BNLug - Sun Solaris Remote IPv6 IPSec Packet Denial of Service Vulnerability

Sun Solaris Remote IPv6 IPSec Packet Denial of Service Vulnerability

TITLE: Sun Solaris Remote IPv6 IPSec Packet Denial of Service Vulnerability
CLASS: Failure to Handle Exceptional Conditions
CVE:
REMOTE: Yes
LOCAL: No
PUBLISHED: Jun 14 2007 12:00AM
UPDATE: Jun 14 2007 12:00AM
CREDIT: The vendor disclosed this issue.
VULNERABLE:

Sun Solaris 10_x86
Sun Solaris 10

NOT VULNERABLE:

Vai alla pagina originale su Security Focus

Discussion

Sun Solaris is prone to a denial-of-service vulnerability because the operating system fails to handle exceptional conditions.

An attacker can exploit this issue to cause the affected kernel to panic, resulting in a denial-of-service condition.

This issue affects the Solaris 10 operating system.

Exploit

Attackers utilize network packet generation utilities to exploit this issue.

Solution

Solution:
Sun has released patches and an advisory to address this issue. Please see the references for more information.

Sun Solaris 10

Sun 125100-09
http://sunsolve.sun.com/search/document.do?assetkey=1-21-125100-09-1

Sun Solaris 10_x86

Sun 125101-09
http://sunsolve.sun.com/search/document.do?assetkey=1-21-125101-09-1

References

References:

Solaris Home Page (Sun Microsystems)
Sun Alert ID: 102919 (Sun)

Sun Solaris Remote IPv6 IPSec Packet Denial of Service Vulnerability

Discussion

Exploit

Solution

References

PhpLog

BNLug Benevento Linux Users Group

Menu Principale

Staff

Partner

Link