ID CVE-2008-3549
Summary Unspecified vulnerability in the pthread_mutex_reltimedlock_np API in Sun Solaris 10 and OpenSolaris before snv_90 allows local users to cause a denial of service (system hang or panic) via unknown vectors.
References
Vulnerable Configurations
  • cpe:2.3:o:sun:opensolaris:build_snv_01:-:sparc
    cpe:2.3:o:sun:opensolaris:build_snv_01:-:sparc
  • cpe:2.3:o:sun:opensolaris:build_snv_01:-:x86
    cpe:2.3:o:sun:opensolaris:build_snv_01:-:x86
  • cpe:2.3:o:sun:opensolaris:build_snv_02:-:sparc
    cpe:2.3:o:sun:opensolaris:build_snv_02:-:sparc
  • cpe:2.3:o:sun:opensolaris:build_snv_02:-:x86
    cpe:2.3:o:sun:opensolaris:build_snv_02:-:x86
  • cpe:2.3:o:sun:opensolaris:build_snv_13:-:sparc
    cpe:2.3:o:sun:opensolaris:build_snv_13:-:sparc
  • cpe:2.3:o:sun:opensolaris:build_snv_13:-:x86
    cpe:2.3:o:sun:opensolaris:build_snv_13:-:x86
  • cpe:2.3:o:sun:opensolaris:build_snv_19:-:sparc
    cpe:2.3:o:sun:opensolaris:build_snv_19:-:sparc
  • cpe:2.3:o:sun:opensolaris:build_snv_19:-:x86
    cpe:2.3:o:sun:opensolaris:build_snv_19:-:x86
  • cpe:2.3:o:sun:opensolaris:build_snv_22:-:sparc
    cpe:2.3:o:sun:opensolaris:build_snv_22:-:sparc
  • cpe:2.3:o:sun:opensolaris:build_snv_22:-:x86
    cpe:2.3:o:sun:opensolaris:build_snv_22:-:x86
  • cpe:2.3:o:sun:opensolaris:build_snv_39:-:sparc
    cpe:2.3:o:sun:opensolaris:build_snv_39:-:sparc
  • cpe:2.3:o:sun:opensolaris:build_snv_39:-:x86
    cpe:2.3:o:sun:opensolaris:build_snv_39:-:x86
  • cpe:2.3:o:sun:opensolaris:build_snv_47:-:sparc
    cpe:2.3:o:sun:opensolaris:build_snv_47:-:sparc
  • cpe:2.3:o:sun:opensolaris:build_snv_47:-:x86
    cpe:2.3:o:sun:opensolaris:build_snv_47:-:x86
  • cpe:2.3:o:sun:opensolaris:build_snv_64:-:sparc
    cpe:2.3:o:sun:opensolaris:build_snv_64:-:sparc
  • cpe:2.3:o:sun:opensolaris:build_snv_64:-:x86
    cpe:2.3:o:sun:opensolaris:build_snv_64:-:x86
  • cpe:2.3:o:sun:opensolaris:build_snv_79b:-:sparc
    cpe:2.3:o:sun:opensolaris:build_snv_79b:-:sparc
  • cpe:2.3:o:sun:opensolaris:build_snv_79b:-:x86
    cpe:2.3:o:sun:opensolaris:build_snv_79b:-:x86
  • cpe:2.3:o:sun:opensolaris:build_snv_88:-:sparc
    cpe:2.3:o:sun:opensolaris:build_snv_88:-:sparc
  • cpe:2.3:o:sun:opensolaris:build_snv_88:-:x86
    cpe:2.3:o:sun:opensolaris:build_snv_88:-:x86
  • cpe:2.3:o:sun:opensolaris:build_snv_89:-:sparc
    cpe:2.3:o:sun:opensolaris:build_snv_89:-:sparc
  • cpe:2.3:o:sun:opensolaris:build_snv_89:-:x86
    cpe:2.3:o:sun:opensolaris:build_snv_89:-:x86
  • cpe:2.3:o:sun:solaris:10:-:sparc
    cpe:2.3:o:sun:solaris:10:-:sparc
  • cpe:2.3:o:sun:solaris:10:-:x86
    cpe:2.3:o:sun:solaris:10:-:x86
CVSS
Base: 4.7 (as of 08-08-2008 - 11:00)
Impact:
Exploitability:
CWE CWE-399
CAPEC
Access
VectorComplexityAuthentication
LOCAL MEDIUM NONE
Impact
ConfidentialityIntegrityAvailability
NONE NONE COMPLETE
nessus via4
oval via4
accepted 2008-09-22T04:00:23.912-04:00
class vulnerability
contributors
name Pai Peng
organization Hewlett-Packard
definition_extensions
  • comment Solaris 10 (SPARC) is installed
    oval oval:org.mitre.oval:def:1440
  • comment Solaris 10 (x86) is installed
    oval oval:org.mitre.oval:def:1926
description Unspecified vulnerability in the pthread_mutex_reltimedlock_np API in Sun Solaris 10 and OpenSolaris before snv_90 allows local users to cause a denial of service (system hang or panic) via unknown vectors.
family unix
id oval:org.mitre.oval:def:5446
status accepted
submitted 2008-08-11T17:42:55.000-04:00
title Security Vulnerabilities in the Solaris Priority Inherited pthread mutex API May Result in a Denial of Service (DoS) Condition
version 32
refmap via4
bid 30561
sectrack 1020634
secunia 31348
sunalert 239387
vupen ADV-2008-2312
xf solaris-pthreadmutexreltimedlocknp-dos(44224)
Last major update 07-03-2011 - 22:10
Published 07-08-2008 - 17:41
Last modified 28-09-2017 - 21:31
Back to Top