ID CVE-2006-3664
Summary Unspecified vulnerability in NIS server on Sun Solaris 8, 9, and 10 allows local and remote attackers to cause a denial of service (ypserv hang) via unknown vectors.
References
Vulnerable Configurations
  • cpe:2.3:o:sun:solaris:8.0:-:sparc
    cpe:2.3:o:sun:solaris:8.0:-:sparc
  • cpe:2.3:o:sun:solaris:8.0:-:x86
    cpe:2.3:o:sun:solaris:8.0:-:x86
  • cpe:2.3:o:sun:solaris:8.0:beta
    cpe:2.3:o:sun:solaris:8.0:beta
  • cpe:2.3:o:sun:solaris:9.0:-:sparc
    cpe:2.3:o:sun:solaris:9.0:-:sparc
  • cpe:2.3:o:sun:solaris:9.0:-:x86
    cpe:2.3:o:sun:solaris:9.0:-:x86
  • cpe:2.3:o:sun:solaris:9.0:x86_update_2
    cpe:2.3:o:sun:solaris:9.0:x86_update_2
  • cpe:2.3:o:sun:solaris:10.0:-:64_bit
    cpe:2.3:o:sun:solaris:10.0:-:64_bit
  • cpe:2.3:o:sun:solaris:10.0:-:sparc
    cpe:2.3:o:sun:solaris:10.0:-:sparc
  • cpe:2.3:o:sun:solaris:10.0:-:x86
    cpe:2.3:o:sun:solaris:10.0:-:x86
  • Sun SunOS (Solaris 8) 5.8
    cpe:2.3:o:sun:sunos:5.8
  • Sun SunOS (Solaris 9) 5.9
    cpe:2.3:o:sun:sunos:5.9
CVSS
Base: 5.0 (as of 19-07-2006 - 16:02)
Impact:
Exploitability:
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
NONE NONE PARTIAL
nessus via4
  • NASL family Solaris Local Security Checks
    NASL id SOLARIS8_X86_109329.NASL
    description SunOS 5.8_x86: ypserv, ypxfr and ypxfrd patch. Date this patch was last updated by Sun : Feb/20/07
    last seen 2018-09-02
    modified 2014-08-30
    plugin id 13430
    published 2004-07-12
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=13430
    title Solaris 8 (x86) : 109329-07
  • NASL family Solaris Local Security Checks
    NASL id SOLARIS10_X86_122078.NASL
    description SunOS 5.10_x86: NIS yp utilities patch. Date this patch was last updated by Sun : Sep/02/08
    last seen 2018-09-01
    modified 2018-08-13
    plugin id 22062
    published 2006-07-18
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=22062
    title Solaris 10 (x86) : 122078-04
  • NASL family Solaris Local Security Checks
    NASL id SOLARIS8_109328.NASL
    description SunOS 5.8: ypserv, ypxfr and ypxfrd patch. Date this patch was last updated by Sun : Feb/20/07
    last seen 2018-09-01
    modified 2014-08-30
    plugin id 13322
    published 2004-07-12
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=13322
    title Solaris 8 (sparc) : 109328-07
  • NASL family Solaris Local Security Checks
    NASL id SOLARIS9_113579.NASL
    description SunOS 5.9: ypserv/ypxfrd patch. Date this patch was last updated by Sun : Feb/20/07
    last seen 2016-09-26
    modified 2011-09-18
    plugin id 13542
    published 2004-07-12
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=13542
    title Solaris 9 (sparc) : 113579-12
  • NASL family Solaris Local Security Checks
    NASL id SOLARIS10_123186.NASL
    description SunOS 5.10: NIS yp utilities patch. Date this patch was last updated by Sun : Sep/02/08
    last seen 2018-09-01
    modified 2018-08-13
    plugin id 22061
    published 2006-07-18
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=22061
    title Solaris 10 (sparc) : 123186-03
  • NASL family Solaris Local Security Checks
    NASL id SOLARIS9_X86_114342.NASL
    description SunOS 5.9_x86: ypserv/ypxfrd/rpc.yppasswdd. Date this patch was last updated by Sun : Feb/20/07
    last seen 2016-09-26
    modified 2011-09-18
    plugin id 13598
    published 2004-07-12
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=13598
    title Solaris 9 (x86) : 114342-12
oval via4
accepted 2007-09-27T08:57:42.566-04:00
class vulnerability
contributors
name Pai Peng
organization Opsware, Inc.
definition_extensions
  • comment Solaris 8 (SPARC) is installed
    oval oval:org.mitre.oval:def:1539
  • comment Solaris 9 (SPARC) is installed
    oval oval:org.mitre.oval:def:1457
  • comment Solaris 10 (SPARC) is installed
    oval oval:org.mitre.oval:def:1440
  • comment Solaris 8 (x86) is installed
    oval oval:org.mitre.oval:def:2059
  • comment Solaris 9 (x86) is installed
    oval oval:org.mitre.oval:def:1683
  • comment Solaris 10 (x86) is installed
    oval oval:org.mitre.oval:def:1926
description Unspecified vulnerability in NIS server on Sun Solaris 8, 9, and 10 allows local and remote attackers to cause a denial of service (ypserv hang) via unknown vectors.
family unix
id oval:org.mitre.oval:def:1921
status accepted
submitted 2007-08-10T12:25:27.000-04:00
title Security Vulnerability With NIS server ypserv(1M) May Allow a Denial of Service (DoS) to Occur
version 31
refmap via4
bid 18972
sectrack 1016494
secunia 21047
sunalert 102462
vupen ADV-2006-2799
xf solaris-ypserv-dos(27722)
Last major update 07-03-2011 - 21:39
Published 18-07-2006 - 11:47
Last modified 30-10-2018 - 12:26
Back to Top