« Sun Alert 237504 SUN... | Main | Sun Alert 231467... »
06 May 2008 Sun Alert 200864 Security Vulnerability in the TCP Implementation of Solaris Systems May Allow a Denial of Service When Accepting New Connections While Undergoing a TCP "SYN Flood" Attack
posted by security in Alerts
Product: Solaris 8 Operating System, Solaris 9 Operating System, Solaris 10 Operating System


A security vulnerability in the TCP implementation of Solaris 8, 9 and 10 may allow a remote unprivileged user to cause a Solaris system which is undergoing a "TCP SYN" flood condition to be slow to accept new network connections.�� Such network connections may time out without establishing a connection.�� This would lead to a Denial of Service (DoS) to the network services provided by that system. In addition, a uniprocessor system may also experience overall slowdown due to high CPU usage, resulting in a Denial of Service to the system as a whole.

State: Resolved
First released: 06-May-2008
Sun Alert Link: http://sunsolve.sun.com/search/document.do?assetkey=1-66-200864-1
Permalink | Comments [0]
Trackback URL: http://blogs.sun.com/security/entry/sun_alert_200864_security_vulnerability
Comments:

Post a Comment:

Name:
E-Mail:
URL:

Your Comment:

HTML Syntax: NOT allowed

« Sun Alert 237504 SUN... | Main | Sun Alert 231467... »

Sun Certified Security Administrator

Download Solaris
Patches and Updates
Download Solaris Security Toolkit

« December 2009
SunMonTueWedThuFriSat
  
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
  
       
Today


Company Info   |   Contact   |   Terms of Use   |   Privacy   |   Trademarks   |   Copyright 2008 Sun Microsystems, Inc.