1. CVE-Search
  2. CVE-2009-0132
ID CVE-2009-0132
Summary Integer overflow in the aio_suspend function in Sun Solaris 8 through 10 and OpenSolaris, when 32-bit mode is enabled, allows local users to cause a denial of service (panic) via a large integer value in the second argument (aka nent argument).
References
Vulnerable Configurations
  • cpe:2.3:o:sun:opensolaris:*:*:sparc:*:*:*:*:*
    cpe:2.3:o:sun:opensolaris:*:*:sparc:*:*:*:*:*
  • cpe:2.3:o:sun:opensolaris:*:*:x86:*:*:*:*:*
    cpe:2.3:o:sun:opensolaris:*:*:x86:*:*:*:*:*
  • cpe:2.3:o:sun:solaris:8:*:sparc:*:*:*:*:*
    cpe:2.3:o:sun:solaris:8:*:sparc:*:*:*:*:*
  • cpe:2.3:o:sun:solaris:8:*:x86:*:*:*:*:*
    cpe:2.3:o:sun:solaris:8:*:x86:*:*:*:*:*
  • cpe:2.3:o:sun:solaris:9:*:sparc:*:*:*:*:*
    cpe:2.3:o:sun:solaris:9:*:sparc:*:*:*:*:*
  • cpe:2.3:o:sun:solaris:9:*:x86:*:*:*:*:*
    cpe:2.3:o:sun:solaris:9:*:x86:*:*:*:*:*
  • cpe:2.3:o:sun:solaris:10:*:sparc:*:*:*:*:*
    cpe:2.3:o:sun:solaris:10:*:sparc:*:*:*:*:*
  • cpe:2.3:o:sun:solaris:10:*:x86:*:*:*:*:*
    cpe:2.3:o:sun:solaris:10:*:x86:*:*:*:*:*
CVSS
Base: 4.9 (as of 08-03-2011 - 03:17)
Impact:
Exploitability:
CWE CWE-189
CAPEC
Access
VectorComplexityAuthentication
LOCAL LOW NONE
Impact
ConfidentialityIntegrityAvailability
NONE NONE COMPLETE
cvss-vector via4 AV:L/AC:L/Au:N/C:N/I:N/A:C
refmap via4
bid 33188
confirm http://sunsolve.sun.com/search/document.do?assetkey=1-21-117350-59-1
misc http://www.trapkit.de/advisories/TKADV2009-001.txt
sectrack 1021553
secunia 33516
sunalert 247986
vupen ADV-2009-0099
Last major update 08-03-2011 - 03:17
Published 15-01-2009 - 17:30
Last modified 08-03-2011 - 03:17
Back to Top