CVE-2016-0419 - Unspecified vulnerability in Oracle Sun Solaris 11 allows local users to affect availability via unk

CVE-2016-0419

Summary

Unspecified vulnerability in Oracle Sun Solaris 11 allows local users to affect availability via unknown vectors related to Solaris Kernel Zones, a different vulnerability than CVE-2016-0431. Per Oracle: Unsupported Solaris 11.x versions should be upgraded to a supported release or patch set. Refer to the Critical Patch Update January 2015 Patch Availability Document for Oracle Sun Systems Products Suite.

References

http://www.oracle.com/technetwork/topics/security/cpujan2016-2367955.html
http://www.securitytracker.com/id/1034735

Vulnerable Configurations

cpe:2.3:o:oracle:solaris:11:*:*:*:*:*:*:*
cpe:2.3:o:oracle:solaris:11:*:*:*:*:*:*:*

CVSS

Base:	4.9 (as of 07-12-2016 - 18:30)
Impact:
Exploitability:

CWE

NVD-CWE-noinfo

CAPEC

Access

Vector	Complexity	Authentication
LOCAL	LOW	NONE

Impact

Confidentiality	Integrity	Availability
NONE	NONE	COMPLETE

cvss-vector via4

AV:L/AC:L/Au:N/C:N/I:N/A:C

refmap via4

confirm	http://www.oracle.com/technetwork/topics/security/cpujan2016-2367955.html
sectrack	1034735

Last major update

07-12-2016 - 18:30

Published

21-01-2016 - 02:59

Last modified

07-12-2016 - 18:30