CVE-2007-2529

Integer signedness error in the acl facl system call in Solaris 10 before 20070507 allows local users to cause a denial of service kernel panic and possibly gain privileges via a certain argument, related to ACESETACL...

Integer overflow

Integer signedness error in the acl facl system call in Solaris 10 before 20070507 allows local users to cause a denial of service kernel panic and possibly gain privileges via a certain argument, related to ACESETACL...

Sun Solaris facl() DoS

Integer overflow on ACESETACL processing...

CVE-2007-2529

CVE-2007-2529 affects Solaris 10 (before 20070507) with an integer signedness error in the acl (facl) system call. The underlying issue is a signedness bug in ACE_SETACL handling, enabling local users to trigger a denial of service (kernel panic) and potentially escalate privileges. Publicly docu...

iDefense Security Advisory 05.07.07: Sun Microsystems Solaris ACE_SETACL Integer Signedness DoS Vulnerability

Sun Microsystems Solaris ACESETACL Integer Signedness DoS Vulnerability iDefense Security Advisory 05.07.07 http://labs.idefense.com/intelligence/vulnerabilities/ May 07, 2007 I. BACKGROUND Solaris is a UNIX operating system developed by Sun Microsystems. More information can be found via the...

Sun Solaris ACE_SETACL本地拒绝服务漏洞

Solaris是一款由Sun开发和维护的商业性质UNIX操作系统。 Solaris的facl系统调用实现上存在漏洞，本地攻击者可能利用此漏洞导致系统不可用。 facl系统调用用于对文件设置访问控制。由于没有正确地检查向该函数所传送的ACESETACL参数，攻击者可能通过特制的参数导致内核分配大量的内存，造成内核忙碌。 Sun Solaris 10x86 Sun Solaris 10.0 Sun已经为此发布了一个安全公告（Sun-Alert-102869）以及相应补丁: Sun-Alert-102869：Security Vulnerability Relating to the acl2...