Lucene search

[email protected]CVE-2006-4117

HistoryAug 14, 2006 - 9:04 p.m.

CVE-2006-4117

2006-08-1421:04:00

[email protected]

web.nvd.nist.gov

cve-2006-4117

squeue_drain

denial of service

sun solaris 10

cmt processors

tcp connections

nvd

5.4 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:H/Au:N/C:N/I:N/A:C

6.7 Medium

AI Score

Confidence

High

0.06 Low

EPSS

Percentile

93.5%

JSON

The squeue_drain function in Sun Solaris 10, possibly only when run on CMT processors, allows remote attackers to cause a denial of service (“bad trap” and system panic) by opening and closing a large number of TCP connections (“heavy TCP/IP loads”). NOTE: the original report specifies the function name as “drain_squeue,” but this is likely incorrect.

Affected configurations

NVD

Node

sunsolarisMatch10.0sparc

CPENameOperatorVersion
sun:solarissun solariseq10.0

CPE	Name	Operator	Version
sun:solaris	sun solaris	eq	10.0

References

secunia.com/advisories/21453

securitytracker.com/id?1016674

sunsolve.sun.com/search/document.do?assetkey=1-26-102554-1

www.vupen.com/english/advisories/2006/3239

exchange.xforce.ibmcloud.com/vulnerabilities/28321

5.4 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:H/Au:N/C:N/I:N/A:C

6.7 Medium

AI Score

Confidence

High

0.06 Low

EPSS

Percentile

93.5%

JSON

Related for CVE-2006-4117

cvelist1 nvd1 nessus1