|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
[SA23982] Sun Solaris ICMP Denial of Service Vulnerability
From: Secunia Security Advisories (sec-adv
secunia.com)
Date: Wed Jan 31 2007 - 03:02:04 CST
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
----------------------------------------------------------------------
Secunia is proud to announce the availability of the Secunia Software
Inspector.
The Secunia Software Inspector is a free service that detects insecure
versions of software that you may have installed in your system. When
insecure versions are detected, the Secunia Software Inspector also
provides thorough guidelines for updating the software to the latest
secure version from the vendor.
Try it out online:
http://secunia.com/software_inspector/
----------------------------------------------------------------------
TITLE:
Sun Solaris ICMP Denial of Service Vulnerability
SECUNIA ADVISORY ID:
SA23982
VERIFY ADVISORY:
http://secunia.com/advisories/23982/
CRITICAL:
Moderately critical
IMPACT:
DoS
WHERE:
From remote
OPERATING SYSTEM:
Sun Solaris 10
http://secunia.com/product/4813/
DESCRIPTION:
Sun has acknowledged a vulnerability in Solaris, which can be
exploited by malicious people to cause a DoS (Denial of Service).
The vulnerability is caused due to an unspecified error when
processing ICMP ping requests and can be exploited to cause a system
panic by sending a specially crafted ICMP request to an affected
system.
Successful exploitation requires that systems are configured to
receive ICMP ping requests.
The vulnerability is reported in Sun Solaris 10 for both the SPARC
and x86 platform.
SOLUTION:
Apply patches.
Sun Solaris 10 for the SPARC platform:
Apply patch 118833-28 or later
Sun Solaris 10 for the x86 platform:
Apply patch 118855-28 or later
PROVIDED AND/OR DISCOVERED BY:
Reported by the vendor.
ORIGINAL ADVISORY:
http://sunsolve.sun.com/search/document.do?assetkey=1-26-102697-1
----------------------------------------------------------------------
About:
This Advisory was delivered by Secunia as a free service to help
everybody keeping their systems up to date against the latest
vulnerabilities.
Subscribe:
http://secunia.com/secunia_security_advisories/
Definitions: (Criticality, Where etc.)
http://secunia.com/about_secunia_advisories/
Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.
----------------------------------------------------------------------
Unsubscribe: Secunia Security Advisories
----------------------------------------------------------------------
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]