CVE-2007-5726 - Unspecified vulnerability in the Stream Control Transmission Protocol (sctp) functionality in Sun So

CVE-2007-5726

Summary

Unspecified vulnerability in the Stream Control Transmission Protocol (sctp) functionality in Sun Solaris 10, when at least one SCTP socket is in the LISTEN state, allows remote attackers to cause a denial of service (panic) via unspecified vectors related to "INIT processing."

References

Vulnerable Configurations

cpe:2.3:o:sun:solaris:10.0:*:sparc:*:*:*:*:*
cpe:2.3:o:sun:solaris:10.0:*:sparc:*:*:*:*:*
cpe:2.3:o:sun:solaris:10.0:unkown:x86:*:*:*:*:*
cpe:2.3:o:sun:solaris:10.0:unkown:x86:*:*:*:*:*

CVSS

Base:	6.8 (as of 29-07-2017 - 01:33)
Impact:
Exploitability:

CWE

NVD-CWE-noinfo

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	LOW	SINGLE

Impact

Confidentiality	Integrity	Availability
NONE	NONE	COMPLETE

cvss-vector via4

AV:N/AC:L/Au:S/C:N/I:N/A:C

refmap via4

bid	26224
osvdb	40815
sectrack	1018867
secunia	27428
sunalert	103101 201252
vupen	ADV-2007-3633
xf	solaris-sctp-init-dos(38126)

Last major update

29-07-2017 - 01:33

Published

30-10-2007 - 21:46

Last modified

29-07-2017 - 01:33