PT-1997-1238 · Sun · Sun Solaris

Published

1997-06-26

Updated

2018-10-30

CVE-1999-1423

CVSS v2.0

2.1

Low

Vector

AV:L/AC:L/Au:N/C:N/I:N/A:P

Name of the Vulnerable Software and Affected Versions Sun Solaris versions 2.3 through 2.6

Description The issue allows local users to cause a denial of service, resulting in a system crash, by sending a ping request to a multicast address through the loopback interface. This can be achieved, for example, via the command ping -i.

Recommendations For Sun Solaris versions 2.3 through 2.6, consider restricting access to the ping command or limiting its use to prevent potential denial of service attacks until a fix is available.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-1999-1423

Affected Products

Sun Solaris

PT-1997-1238 · Sun · Sun Solaris

CVE-1999-1423

Related Identifiers

Affected Products

References · 9