CVE-2009-2187

Sažetak

Multiple memory leaks in the (1) IP and (2) IPv6 multicast implementation in the kernel in Sun Solaris 10, and OpenSolaris snv_67 through snv_93, allow local users to cause a denial of service (memory consumption) via vectors related to the association of (a) DL_ENABMULTI_REQ and (b) DL_DISABMULTI_REQ messages with ARP messages.

Reference

http://bugs.opensolaris.org/view_bug.do?bug_id=6709252
http://bugs.opensolaris.org/view_bug.do?bug_id=6731600
http://secunia.com/advisories/35552
http://sunsolve.sun.com/search/document.do?assetkey=1-21-141414-01-1
http://sunsolve.sun.com/search/document.do?assetkey=1-66-262408-1
http://www.securityfocus.com/bid/35474

CVSS

Base:	4.9
Impact:	6.9
Exploitability:	3.9

Pristup

Vektor	Složenost	Autentikacija
LOCAL	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
NONE	NONE	COMPLETE

CVSS vektor

AV:L/AC:L/Au:N/C:N/I:N/A:C

Zadnje važnije ažuriranje

25-06-2009 - 04:00

Objavljeno

25-06-2009 - 01:30