Executive Summary

Title Sun Alert 238414 Security Vulnerability in Service Tag Registry May Allow Denial of Service
Name SUN-238414 First vendor Publication 2008-06-03
Vendor Sun Last vendor Modification 2008-06-06
Severity (Vendor) N/A Revision N/A

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score NA
Base Score NA Environmental Score NA
impact SubScore NA Temporal Score NA
Exploitabality Sub Score NA
Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:L/AC:L/Au:N/C:N/I:N/A:C)
Cvss Base Score 4.9 Attack Range Local
Cvss Impact Score 6.9 Attack Complexity Low
Cvss Expoit Score 3.9 Authentication None Required
Calculate full CVSS 2.0 Vectors scores


Product: Sun Service Tag 1.0
A security vulnerability in the Service Tag Registry may
allow a local unprivileged user to fill the '/var' filesystem on a
host, which may result in a Denial of Service (DoS) to any
functionality that depends on that fileystem.
State: Resolved
First released: 03-Jun-2008

Original Source

Url : http://blogs.sun.com/security/entry/sun_alert_238414_security_vulnerability

CWE : Common Weakness Enumeration

% Id Name
100 % CWE-399 Resource Management Errors

CPE : Common Platform Enumeration

Application 5

Open Source Vulnerability Database (OSVDB)

Id Description
45964 Sun Service Tag Registry /var Filesystem Consumption Local DoS

Nessus® Vulnerability Scanner

Date Description
2008-06-02 Name : The remote host is missing Sun Security Patch number 136839-01
File : solaris10_136839.nasl - Type : ACT_GATHER_INFO
2008-06-02 Name : The remote host is missing Sun Security Patch number 136840-01
File : solaris10_x86_136840.nasl - Type : ACT_GATHER_INFO

Alert History

If you want to see full details history, please login or register.
Date Informations
2013-02-06 19:08:16
  • Multiple Updates