No account yet?
Home » Exploits » Sun Solaris Keysock Kernel Module Local Denial Of Service Vulnerability
Sun Solaris Keysock Kernel Module Local Denial Of Service Vulnerability E-mail
Feeds - Exploits
Written by Sun   
Saturday, 14 March 2009 22:06
Sun Solaris Keysock Kernel Module Local Denial Of Service Vulnerability


-\\Bugtraq ID:
34118

-\\Class:
Access Validation Error

-\\CVE:


-\\Remote:
No

-\\Local:
Yes

-\\Published:
Mar 14 2009 12:00AM

-\\Updated:
Mar 14 2009 12:00AM

-\\Credit:
Sun



-\\Vulnerable:
Sun Solaris  10.0_x86
Sun Solaris  10.0
Sun OpenSolaris  build snv_99
Sun OpenSolaris  build snv_96
Sun OpenSolaris  build snv_95
Sun OpenSolaris  build snv_94
Sun OpenSolaris  build snv_93
Sun OpenSolaris  build snv_92
Sun OpenSolaris  build snv_91
Sun OpenSolaris  build snv_90
Sun OpenSolaris  build snv_89
Sun OpenSolaris  build snv_88
Sun OpenSolaris  build snv_87
Sun OpenSolaris  build snv_86
Sun OpenSolaris  build snv_85
Sun OpenSolaris  build snv_84
Sun OpenSolaris  build snv_83
Sun OpenSolaris  build snv_82
Sun OpenSolaris  build snv_81
Sun OpenSolaris  build snv_80
Sun OpenSolaris  build snv_78
Sun OpenSolaris  build snv_77
Sun OpenSolaris  build snv_76
Sun OpenSolaris  build snv_68
Sun OpenSolaris  build snv_67
Sun OpenSolaris  build snv_64
Sun OpenSolaris  build snv_61
Sun OpenSolaris  build snv_59
Sun OpenSolaris  build snv_57
Sun OpenSolaris  build snv_50
Sun OpenSolaris  build snv_39
Sun OpenSolaris  build snv_36
Sun OpenSolaris  build snv_29
Sun OpenSolaris  build snv_22
Sun OpenSolaris  build snv_19
Sun OpenSolaris  build snv_13
Sun OpenSolaris  build snv_108
Sun OpenSolaris  build snv_107
Sun OpenSolaris  build snv_106
Sun OpenSolaris  build snv_105
Sun OpenSolaris  build snv_104
Sun OpenSolaris  build snv_104
Sun OpenSolaris  build snv_103
Sun OpenSolaris  build snv_102
Sun OpenSolaris  build snv_101a
Sun OpenSolaris  build snv_101
Sun OpenSolaris  build snv_100
Sun OpenSolaris  build snv_02
Sun OpenSolaris  build snv_01
Sun OpenSolaris  0



-\\Not Vulnerable:
Sun OpenSolaris  build snv_109



-\\Discussion
The Sun Solaris keysock kernel module is prone to an unspecified  local denial-of-service vulnerability.

A local privileged attacker can exploit this issue to cause a system panic, resulting in a complete shutdown of the vulnerable computer.



-\\Exploit(s)/PoC(s):
Attackers can exploit this issue by creating 'PF_KEY' sockets.



-\\Solution
Vendor updates are available. Please see the references for more information.


Sun Solaris  10.0
--Sun  141008-01
http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21-141008-01-http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21-141008-01-1

Sun Solaris  10.0_x86
--Sun  141009-01
http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21-141009-01-http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21-141009-01-1



-\\Reference(s)
--Sun Solaris Homepage
http://www.sun.com/software/solaris/index.js  (Sun Microsystems)
--Solution  253568 :   Security Vulnerability in the Solaris keysock Kernel Module
http://sunsolve.sun.com/search/document.do?assetkey=1-66-253568-  (Sun)
 

Security Services by HSC

Contact us

Become partner
Advertise with us
Join our staff