Executive Summary

Summary
Title Sun Alert 265888 Security Vulnerability in Solaris sockfs Related to HTTP Request Handling May Allow Remote Users to Panic Web Servers Resulting in a Denial of Service (DoS)
Informations
Name SUN-265888 First vendor Publication 2009-08-26
Vendor Sun Last vendor Modification 2009-09-10
Severity (Vendor) N/A Revision N/A

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score NA
Base Score NA Environmental Score NA
impact SubScore NA Temporal Score NA
Exploitabality Sub Score NA
 
Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:M/Au:N/C:N/I:N/A:C)
Cvss Base Score 7.1 Attack Range Network
Cvss Impact Score 6.9 Attack Complexity Medium
Cvss Expoit Score 8.6 Authentication None Required
Calculate full CVSS 2.0 Vectors scores

Detail

Product: Solaris 10 Operating System OpenSolaris

A security vulnerability in the Solaris sockfs kernel module may allow a local or remote unprivileged HTTP client to panic a vulnerable Solaris web server thereby resulting in a Denial of Service (DoS) to the system as a whole.

State: Resolved
First released: 26-Aug-2009

Original Source

Url : http://blogs.sun.com/security/entry/sun_alert_265888_security_vulnerability

CWE : Common Weakness Enumeration

% Id Name
100 % CWE-399 Resource Management Errors

CPE : Common Platform Enumeration

TypeDescriptionCount
Os 163
Os 2

Open Source Vulnerability Database (OSVDB)

Id Description
57457 Solaris sockfs Kernel Module Unspecified HTTP Requests Remote DoS

Information Assurance Vulnerability Management (IAVM)

Date Description
2009-09-03 IAVM : 2009-T-0047 - Sun Solaris Kernel Denial of Service Vulnerability
Severity : Category I - VMSKEY : V0019908