Executive Summary
Summary | |
---|---|
Title | Sun Alert 102918 Security Vulnerabilities in the KSSL Kernel Module May Lead to a System Panic |
Informations | |||
---|---|---|---|
Name | SUN-102918 | First vendor Publication | 2007-06-27 |
Vendor | Sun | Last vendor Modification | 2007-06-27 |
Severity (Vendor) | N/A | Revision | N/A |
Security-Database Scoring CVSS v3
Cvss vector : N/A | |||
---|---|---|---|
Overall CVSS Score | NA | ||
Base Score | NA | Environmental Score | NA |
impact SubScore | NA | Temporal Score | NA |
Exploitabality Sub Score | NA | ||
Calculate full CVSS 3.0 Vectors scores |
Security-Database Scoring CVSS v2
Cvss vector : (AV:N/AC:L/Au:N/C:N/I:N/A:C) | |||
---|---|---|---|
Cvss Base Score | 7.8 | Attack Range | Network |
Cvss Impact Score | 6.9 | Attack Complexity | Low |
Cvss Expoit Score | 10 | Authentication | None Required |
Calculate full CVSS 2.0 Vectors scores |
Detail
Product: Solaris 10 Operating System Due to security vulnerabilities related to the handling of memory buffers containing Secure Socket Layer (SSL) records, an unprivileged local or remote user may be able to panic a Solaris 10 system that has been configured to act as a SSL proxy. This would result in a Denial of Service (DoS) to the system. Avoidance: Patch State: Resolved First released: 27-Jun-2007 |
Original Source
Url : http://blogs.sun.com/security/entry/sun_alert_102918_security_vulnerabilities |
OVAL Definitions
Definition Id: oval:org.mitre.oval:def:9165 | |||
Oval ID: | oval:org.mitre.oval:def:9165 | ||
Title: | Security Vulnerabilities in the KSSL Kernel Module May Lead to a System Panic | ||
Description: | Multiple unspecified vulnerabilities in the KSSL kernel module in Sun Solaris 10, when configured with the KSSL proxy, allow remote attackers to cause a denial of service (kernel panic) via unspecified vectors related to "memory buffers" of Secure Socket Layer (SSL) records. | ||
Family: | unix | Class: | vulnerability |
Reference(s): | CVE-2007-3470 | Version: | 1 |
Platform(s): | Sun Solaris 10 | Product(s): | |
Definition Synopsis: | |||
|
CPE : Common Platform Enumeration
Type | Description | Count |
---|---|---|
Os | 2 |
Open Source Vulnerability Database (OSVDB)
Id | Description |
---|---|
36609 | Solaris KSSL Kernel Module Unspecified Remote DoS |
Alert History
Date | Informations |
---|---|
2016-04-26 18:14:28 |
|