Executive Summary

Summary
Title Sun Alert 242486 Multiple Security Issues in the Doors Kernel Functionality
Informations
Name SUN-242486 First vendor Publication 2009-03-10
Vendor Sun Last vendor Modification 2009-03-10
Severity (Vendor) N/A Revision N/A

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score NA
Base Score NA Environmental Score NA
impact SubScore NA Temporal Score NA
Exploitabality Sub Score NA
 
Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:L/AC:M/Au:N/C:C/I:C/A:C)
Cvss Base Score 6.9 Attack Range Local
Cvss Impact Score 10 Attack Complexity Medium
Cvss Expoit Score 3.4 Authentication None Required
Calculate full CVSS 2.0 Vectors scores

Detail

Product: Solaris 8 Operating System Solaris 9 Operating System Solaris 10 Operating System OpenSolaris

Multiple security vulnerabilities exist in the Doors subsystem of the Solaris kernel which may allow a local unprivileged user to hang any door server process, which is a type of Denial of Service (DoS).

These issues may also allow a local unprivileged user or a privileged user in a non-global zone the ability to access files without the necessary permissions or to potentially execute arbitrary code in the kernel context.

State: Resolved
First released: 10-Mar-2009

Original Source

Url : http://blogs.sun.com/security/entry/sun_alert_242486_multiple_security

CWE : Common Weakness Enumeration

% Id Name
50 % CWE-399 Resource Management Errors
50 % CWE-362 Race Condition

CPE : Common Platform Enumeration

TypeDescriptionCount
Os 294
Os 6

Open Source Vulnerability Database (OSVDB)

Id Description
52563 Solaris Kernel Doors Subsystem Unspecified Local Privilege Escalation

52561 Solaris Kernel Doors Subsystem Multiple Unspecified Local DoS

Nessus® Vulnerability Scanner

Date Description
2006-02-19 Name : The remote host is missing Sun Security Patch number 117350-62
File : solaris8_117350.nasl - Type : ACT_GATHER_INFO