|
|
>> Sun Solaris DHCP Buffer Overflow and Denial of Service Vulnerabilities
|
Multiple vulnerabilities have been identified in Sun Solaris, which could be exploited by attackers to cause a denial of service or compromise a vulnerable system. These issues are caused by buffer overflow and input validation errors in DHCP when processing malformed requests, which could be exploited by attackers to crash an affected DHCP server daemon or execute arbitrary code as the root user. For additional information, see : VUPEN/ADV-2007-3459
Affected Products
Sun Solaris 8
Sun Solaris 9
Sun Solaris 10
Sun OpenSolaris builds snv_01 through snv_102
Solution
Sun Solaris 8 (SPARC) - Apply patch 109077-21 or later
Sun Solaris 9 (SPARC) - Apply patch 112837-16 or later
Sun Solaris 10 (SPARC) - Apply patch 138876-01 or later
Sun OpenSolaris - Upgrade to build snv_103 or later
Sun Solaris 8 (x86) - Apply patch 109078-21 or later
Sun Solaris 9 (x86) - Apply patch 114265-15 or later
Sun Solaris 10 (x86) - Apply patch 138877-01 or later
Sun OpenSolaris (x86) - Upgrade to build snv_103 or later
References
http://www.vupen.com/english/advisories/2008/3088
http://sunsolve.sun.com/search/document.do?assetkey=1-66-243806-1
Credits
Vulnerabilities reported by the vendor.
ChangeLog
2008-11-10 : Initial release
Vulnerability Management
Subscribe to VUPEN VNS and receive real-time alerts when new advisories or patches relevant to your systems and network configurations are available.
Feedback
If you have additional information or corrections for this security advisory please submit them via our contact form. | |
|
