CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:N/I:N/A:C
AI Score
Confidence
High
EPSS
Percentile
13.2%
The crypto pseudo device driver in Sun Solaris 10, and OpenSolaris snv_88 through snv_102, does not properly free memory, which allows local users to cause a denial of service (panic) via unspecified vectors, related to the vmem_hash_delete function.
Vendor | Product | Version | CPE |
---|---|---|---|
sun | opensolaris | snv_88 | cpe:2.3:o:sun:opensolaris:snv_88:*:*:*:*:*:*:* |
sun | opensolaris | snv_88 | cpe:2.3:o:sun:opensolaris:snv_88:*:sparc:*:*:*:*:* |
sun | opensolaris | snv_88 | cpe:2.3:o:sun:opensolaris:snv_88:*:x86:*:*:*:*:* |
sun | opensolaris | snv_89 | cpe:2.3:o:sun:opensolaris:snv_89:*:*:*:*:*:*:* |
sun | opensolaris | snv_89 | cpe:2.3:o:sun:opensolaris:snv_89:*:sparc:*:*:*:*:* |
sun | opensolaris | snv_89 | cpe:2.3:o:sun:opensolaris:snv_89:*:x86:*:*:*:*:* |
sun | opensolaris | snv_90 | cpe:2.3:o:sun:opensolaris:snv_90:*:*:*:*:*:*:* |
sun | opensolaris | snv_90 | cpe:2.3:o:sun:opensolaris:snv_90:*:sparc:*:*:*:*:* |
sun | opensolaris | snv_90 | cpe:2.3:o:sun:opensolaris:snv_90:x86:*:*:*:*:*:* |
sun | opensolaris | snv_91 | cpe:2.3:o:sun:opensolaris:snv_91:*:*:*:*:*:*:* |
secunia.com/advisories/34149
secunia.com/advisories/34455
securitytracker.com/id?1021810
sunsolve.sun.com/search/document.do?assetkey=1-21-139498-04-1
sunsolve.sun.com/search/document.do?assetkey=1-66-254088-1
support.avaya.com/elmodocs2/security/ASA-2009-097.htm
www.securityfocus.com/bid/34000
www.vupen.com/english/advisories/2009/0606
www.vupen.com/english/advisories/2009/0815
exchange.xforce.ibmcloud.com/vulnerabilities/49105
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5641