Orange Business Services
Vigil@nce Vigil@nce Vigil@nce
we track for your security since 1999
 home presentation vulnerabilities documentation contact  
subscriber area subscriber area
free access free access
The Vigil@nce team watches vulnerabilities impacting your computers, and then offers solutions, a database and tools to correct them.
recent vulnerabilities recent vulnerabilities
tracked products tracked products
RSS feed RSS feed
vulnerability

vulnerability CVE-2009-2136

Solaris: denial of service via Gigabit Ethernet IPv4

Synthesis of the vulnerability

A LAN attacker can send a Gigabit Ethernet frame in order to stop the system.
Severity: 2/4.
Creation date: 19/06/2009.

Impacted products

Description of the vulnerability

The "ce" driver implements the support of Cassini Gigabit Ethernet network adapters. These adapters can receive jumbo Ethernet frames.

The IPv4 checksum is computed by the system or by the adapter.

An attacker can send a jumbo frame, where the data size is smaller than the frame size. The system then has to recompute the checksum because the "len" (length) field was updated in the packet. However, if the checksum was computed by the adapter, an error occurs in the ip_ocsum_long() assembler function when the system recomputes the checksum.

An attacker located on a network supporting jumbo frames can therefore send an invalid frame in order to generate a denial of service.

This vulnerability is similar to VIGILANCE-VUL-9004.

Share this bulletin

Delicious Digg Facebook Google bookmarks LinkedIn Mail Reddit StumbleUpon Technorati Twitter Yahoo 

Complete Vigil@nce bulletin

Solaris: denial of service via Gigabit Ethernet IPv4

Characteristics

Title: Solaris: denial of service via Gigabit Ethernet IPv4.
Keywords: Cassini Ethernet Gigabit IPv4 LAN Solaris denial ip_ocsum_long service.
Identifiers: 257008, 6803523, BID-35439, CERTA-2009-AVI-246, CVE-2009-2136, VIGILANCE-VUL-8810.
Pointed by: VIGILANCE-VUL-9004.

Information sources

Publications and announces
Source example: Security Vulnerability with the Solaris TCP/IP Networking Stack Involving the Cassini Gigabit-Ethernet Device Driver and Jumbo Frames

Solutions for this vulnerability

Patch or workaround

Computer vulnerabilities tracking service

Vigil@nce provides an applications vulnerabilities note. The Vigil@nce vulnerability database contains several thousand vulnerabilities. The technology watch team tracks security threats targeting the computer system. The Vigil@nce team tracks computer vulnerabilities impacting systems and applications.



















Copyright 1999-2012 Vigil@nce. Vigil@nce is a service from Orange Business Services. Site map. Legal notice. Version française