SunOS /dev/tcp Malformed Data Local DoS

1994-07-30T20:21:37
ID OSVDB:17050
Type osvdb
Reporter OSVDB
Modified 1994-07-30T20:21:37

Description

Vulnerability Description

SunOS contains a flaw that may allow a local denial of service. The issue is triggered when arbitrary data is written to /dev/tcp causing a system reboot, and will result in loss of availability for the operating system.

Solution Description

Upgrade to SunOS version 5 or higher, as it has been reported to fix this vulnerability. In addition, Sun has released patches for some older versions. Refer to Sun's public patch report for a list of recommended patches.

Short Description

SunOS contains a flaw that may allow a local denial of service. The issue is triggered when arbitrary data is written to /dev/tcp causing a system reboot, and will result in loss of availability for the operating system.

Manual Testing Notes

echo booga > /dev/tcp

References:

Vendor Specific Solution URL: http://sunsolve.sun.com/search/document.do?assetkey=1-34-public_patch_report-1 Mail List Post: http://archives.neohapsis.com/archives/bugtraq/1994_3/0105.html