CVE-2007-2465

Name of the Vulnerable Software and Affected Versions Sun Solaris version 9

Description The issue allows local users to cause a denial of service, resulting in a system panic, when Solaris Auditing (BSM) is enabled for certain audit classes, such as file read, write, attribute modify, create, or delete. The exact vectors are unknown, but it may be related to the audit savepath function.

Recommendations For Sun Solaris version 9, consider disabling Solaris Auditing (BSM) for the affected audit classes as a temporary workaround to minimize the risk of denial of service attacks. Restrict access to the audit savepath function until a patch is available.