| The Vigil@nce team watches vulnerabilities impacting your computers, and then offers solutions, a database and tools to correct them. |
|
 |
|
|
|
vulnerability CVE-2009-2297
Solaris: denial of service via UDP and TE
Synthesis of the vulnerability
| When Solaris Trusted Extensions are enabled and when some patches are installed, an attacker can use UDP packets to stop the system. |
Severity: 1/4.
Creation date: 02/07/2009.
Revision date: 08/07/2009.
|
Impacted products
Description of the vulnerability
Trusted Extensions can be enabled on Solaris, in order for example to provide a fine-grained access control to resources.
A regression error was announced when Trusted Extensions are enabled:
- under Solaris 10 with patches 138888-03/138889-03 or 139555-08/139556-08
- under OpenSolaris with builds snv_90 to snv_108
In this case, the system refuses to start, or can be stopped in the crgetlabel() function when UDP packets are sent. Technical details are unknown.
When Solaris Trusted Extensions are enabled and when some patches are installed, an attacker can therefore use UDP packets to stop the system. |
Share this bulletin
Complete Vigil@nce bulletin
Characteristics
Title: Solaris: denial of service via UDP and TE.
Keywords: 138888-03 138889-03 139555-08 139556-08 Extensions OpenSolaris Solaris Trusted UDP denial service snv_108 snv_90.
Identifiers: 262048, 6749743, BID-35545, CVE-2009-2297, VIGILANCE-VUL-8835.
|
Information sources
Solutions for this vulnerability
Computer vulnerabilities tracking service
Vigil@nce provides an applications vulnerabilities bulletin. The Vigil@nce team tracks computer vulnerabilities impacting systems and applications. Each administrator can customize the list of products for which he wants to receive vulnerability alerts. The Vigil@nce security watch publishes vulnerability bulletins about threats impacting the information system.
|
