« Sun Alert 240866... | Main | Sun Alert 240706... »
27 Aug 2008 Sun Alert 239186 A Security Vulnerability in Solaris 10 involving the sendfilev() system call could result in Denial of Service (DoS) due to System Panic
posted by security in Alerts
Product: Solaris 10 Operating System OpenSolaris

A security vulnerability in Solaris 10 related to the sendfilev() system call may allow a user who has the ability to create pages that are hosted on a Solaris 10 system using Apache 2.2.x to create a carefully crafted web page which could cause a system panic resulting in a Denial of Service (DoS) condition.
��
In addition, it may be possible for a local unprivileged user to be able to panic the system with a specially crafted program which calls the sendfile() system call (using either the sendfilev(3EXT) library routine or else directly).

State: Resolved
First released: 06-Aug-2008
Sun Alert Link: http://sunsolve.sun.com/search/document.do?assetkey=1-66-239186-1
Permalink | Comments [0]
Trackback URL: http://blogs.sun.com/security/entry/sun_alert_239186_a_security
Comments:

Post a Comment:

Name:
E-Mail:
URL:

Your Comment:

HTML Syntax: NOT allowed

« Sun Alert 240866... | Main | Sun Alert 240706... »

Sun Certified Security Administrator

Download Solaris
Patches and Updates
Download Solaris Security Toolkit

« November 2009
SunMonTueWedThuFriSat
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
     
       
Today


Company Info   |   Contact   |   Terms of Use   |   Privacy   |   Trademarks   |   Copyright 2008 Sun Microsystems, Inc.