Select local site

F-Secure Vulnerability Information :
Sun Solaris "inet_network()" Off-By-One Vulnerability

[Summary] | [Detailed Description] | [Solution] | [CVE Reference]

Report ID:SA30538
Source:Secunia
Date of Discovery:05.06.2008
Criticality:Moderate
Affects:

Sun Solaris 10
Sun Solaris 8
Sun Solaris 9

Compromise From:From remote
Compromise Type:DoS
System access
Summary

Sun has acknowledged a vulnerability in Solaris, which can be exploited by malicious people to cause a DoS (Denial of Service) or to potentially compromise a vulnerable system.

Back to the Top

Detailed Description

Sun has acknowledged a vulnerability in Solaris, which can be exploited by malicious people to cause a DoS (Denial of Service) or to potentially compromise a vulnerable system.

For more information:
SA28367

The vulnerability is reported in Solaris 8, 9, and 10 for the SPARC platform and Solaris 8 for the x86 platform.

Back to the Top

Solution

Restrict access and network traffic to applications that are linked to affected libraries (please see the vendor advisory for details).

Reportedly, a final resolution is pending completion.

Back to the Top

CVE Reference
CVE-2008-0122
Back to the Top

F-Secure Corporation