Sun Solaris "inet_network()" Off-By-One Vulnerability
Report ID:
SA30538
Source:
Secunia
Date of Discovery:
05.06.2008
Criticality:
Moderate
Affects:
Sun Solaris 10
Sun Solaris 8
Sun Solaris 9
Compromise From:
From remote
Compromise Type:
DoS
System access
Summary
Sun has acknowledged a vulnerability in Solaris, which can be exploited by malicious people to cause a DoS (Denial of Service) or to potentially compromise a vulnerable system.
Detailed Description
Sun has acknowledged a vulnerability in Solaris, which can be exploited by malicious people to cause a DoS (Denial of Service) or to potentially compromise a vulnerable system.
For more information:
SA28367
The vulnerability is reported in Solaris 8, 9, and 10 for the SPARC platform and Solaris 8 for the x86 platform.
Solution
Restrict access and network traffic to applications that are linked to affected libraries (please see the vendor advisory for details).
Reportedly, a final resolution is pending completion.