Executive Summary

Summary
Title Sun Alert 242266 Security Vulnerability in Solaris IP Tunnel Parameter Processing May Lead to a System Panic or Possible Execution of Arbitrary Code by Unprivileged Users
Informations
Name SUN-242266 First vendor Publication 2008-12-17
Vendor Sun Last vendor Modification 2009-01-09
Severity (Vendor) N/A Revision N/A

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score NA
Base Score NA Environmental Score NA
impact SubScore NA Temporal Score NA
Exploitabality Sub Score NA
 
Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:L/AC:L/Au:N/C:C/I:C/A:C)
Cvss Base Score 7.2 Attack Range Local
Cvss Impact Score 10 Attack Complexity Low
Cvss Expoit Score 3.9 Authentication None Required
Calculate full CVSS 2.0 Vectors scores

Detail

Product: Solaris 10 Operating System OpenSolaris

A security vulnerability in the Solaris 10 IP tunnel parameter processing (see tun(7M)) may allow a local unprivileged user the ability to panic the system or execute arbitrary commands with all (super-user) privileges. The ability to panic a system is a type of Denial of Service (DoS).
   
Sun acknowledges with thanks, Tobias Klein (http://www.trapkit.de/) for bringing this issue to our attention.

This issue is also referenced in the following document:


State: Resolved
First released: 17-Dec-2008
Sun Alert Link:http://sunsolve.sun.com/search/document.do?assetkey=1-66-242266-1

Original Source

Url : http://blogs.sun.com/security/entry/sun_alert_242266_security_vulnerability

CWE : Common Weakness Enumeration

% Id Name
100 % CWE-399 Resource Management Errors

OVAL Definitions

Definition Id: oval:org.mitre.oval:def:5949
 
Oval ID: oval:org.mitre.oval:def:5949
Title: Security Vulnerability in Solaris IP Tunnel Parameter Processing May Lead to a System Panic or Possible Execution of Arbitrary Code by Unprivileged Users
Description: tun in IP Tunnel in Solaris 10 and OpenSolaris snv_01 through snv_76 allows local users to cause a denial of service (panic) and possibly execute arbitrary code via a crafted SIOCGTUNPARAM IOCTL request, which triggers a NULL pointer dereference.
Family: unix Class: vulnerability
Reference(s): CVE-2008-5689
 Version: 1
Platform(s): Sun Solaris 10
 Product(s):
Definition Synopsis:

CPE : Common Platform Enumeration

TypeDescriptionCount
Os 158
Os 2

Open Source Vulnerability Database (OSVDB)

Id Description
50933 Solaris IP Tunnel Parameter Processing (tun(7M)) SIOCGTUNPARAM IOCTL Local Pr...

Alert History

If you want to see full details history, please login or register.
0
Date Informations
2013-02-06 19:08:19
  • Multiple Updates