Sun Solaris Volume Manager denial of service
| solaris-svm-dos (16729) |  Medium Risk |
Description:
Sun Solaris is vulnerable to a denial of service attack. If the Solaris Volume Manager device is configured, a local attacker could cause the system to panic.
Consequences:
Denial of Service
Remedy:
Apply the appropriate patch for your system, as listed below. Refer to Sun Alert ID: 57598 for more information. See References.
SPARC Platform:
Solaris 9: 113073-13 or later
x86 Platform:
Solaris 9: 113994-22 or later
References:
- Sun Alert ID: 57598: Security Vulnerability With Solaris Volume Manager (SVM).
- BID-10747: Sun Solaris Volume Manager Denial Of Service Vulnerability
- CVE-2004-1346: The Sun Solaris Volume Manager (SVM) on Solaris 9 allows local users to cause a denial of service (kernel panic) via a malformed probe request to the SVM.
- SA12104: Sun Solaris SVM Local Denial of Service Vulnerability
- US-CERT VU#390742: Sun Solaris Volume Manager (SVM) fails to properly handle malformed probe requests
Platforms Affected:
- Sun Solaris 9 SPARC
- Sun Solaris 9 x86
Reported:
Jul 16, 2004
The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (IBM Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.
For corrections or additions please email xforce@iss.net