[1/5] Sun Solaris 10 fcp and devfs Race Condition Vulnerability

November 30th, 2007 by

[1/5] Sun Solaris 10 fcp and devfs Race Condition Vulnerability

:Sun has acknowledged a vulnerability in Solaris, which can be exploited by malicious, local users to cause a DoS (Denial of Service).The vulnerability is caused due to a race condition between the Fibre Channel Protocol (fcp) driver and the Devices File System (devfs), and can be exploited to cause a DoS.The vulnerability is reported in Solaris 10 for both the SPARC and x86 platforms.Solution:Apply patches.– SPARC Platform –Apply patch 128491-01 or later.– x86 Platform –Apply patch 128492-01 or later.Provided and/or discovered by:Reported by the vendor.Original Advisory:http://sunsolve.sun.com/search/document.do?assetkey=1-26-102947-1

Original post by manisha

[1/5] Sun Solaris 10 fcp and devfs Race Condition Vulnerability

Related Articles:

[2/5] suPHP Race Condition Vulnerabilities

[2/5] Sun Solaris bzip2 Multiple Vulnerabilities

[1/5] Sun Solaris Remote Procedure Call Module Denial of Service

[2/5] NeatUpload Response Handling Race Condition Information Disclosure

[2/5] Internet Explorer Page Loading Race Condition and URL Spoofing

Posted in Advisories - Exploits | | [1/5] Sun Solaris 10 fcp and devfs Race Condition Vulnerability

<< [3/5] Seditio “pag_sub[]” SQL Injection Vulnerability | [2/5] FreeBSD update for gtar >>

Cybertrion Systems

[1/5] Sun Solaris 10 fcp and devfs Race Condition Vulnerability

Categories

Archives:

Search:

Meta: