oval:org.mitre.oval:def:2665

Definition Id: oval:org.mitre.oval:def:2665

Oval ID:	oval:org.mitre.oval:def:2665
Title:	Data Leak in NIC
Description:	Multiple ethernet Network Interface Card (NIC) device drivers do not pad frames with null bytes, which allows remote attackers to obtain information from previous packets or kernel memory by using malformed packets, as demonstrated by Etherleak.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2003-0001	Version:	1
Platform(s):	Sun Solaris 7	Product(s):	Sun Am7990 Ethernet Driver
Definition Synopsis:
Software section Solaris 7,8,or 9 installed Solaris 8 Installed AND Solaris 7 Installed AND Solaris 9 Installed AND NOT Patch 112604-02 or later installed AND NOT Patch 112609-02 or later installed AND NOT Patch 115172-01 or later installed AND Configuration section Lance Ethernet (le) interface configured to start AND Lance Ethernet interface in use