Solaris ICMP Echo Packet Processing Error Lets Remote Users Deny Service
|
|
SecurityTracker Alert ID: 1017574
|
|
SecurityTracker URL: http://securitytracker.com/id?1017574
|
|
CVE Reference: CVE-2007-0634
(Links to External Site)
|
Updated: May 19 2008
|
Original Entry Date: Jan 30 2007
|
Impact: Denial of service via network
|
Fix Available: Yes
Vendor Confirmed: Yes
|
Advisory: Sun Alert
|
Version(s): Solaris 10
|
Description: A vulnerability was reported in Solaris. A remote user can cause denial of service conditions.
A remote user can send a specially crafted ICMP echo packet to trigger a kernel panic on the target system.
|
Impact: A remote user can cause the target system to crash.
|
Solution: Sun has issued the following fixes.
SPARC Platform
* Solaris 10 with patch 118833-28 or later
x86 Platform
*
Solaris 10 with patch 118855-28 or later
The Sun advisory is available at:
http://sunsolve.sun.com/search/document.do?assetkey=1-26-102697-1
|
Vendor URL: sunsolve.sun.com/search/document.do?assetkey=1-26-102697-1 (Links to External Site)
|
Cause: State error
|
Underlying OS: UNIX (Solaris - SunOS)
|
|
Message History:
None.
|
Source Message Contents
|
Date: Tue, 30 Jan 2007 17:10:20 -0500
Subject: A Security Vulnerability in Solaris 10 ICMP Handling May Allow a SystemPanic and Result in Denial of Service (DoS)
|
http://sunsolve.sun.com/search/document.do?assetkey=1-26-102697-1
|
|
