PT-2008-6177 · Sun · Sun Solstice X.25

Published

2008-11-10

Updated

2018-10-30

CVE-2008-5009

CVSS v2.0

4.0

Medium

Vector

AV:L/AC:H/Au:N/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions Sun Solstice X.25 version 9.2

Description A race condition exists in the s xout kernel module when running on a multiple CPU machine. This issue allows local users to cause a denial of service, resulting in a system panic, by reading the /dev/xty file.

Recommendations For Sun Solstice X.25 version 9.2, consider restricting access to the /dev/xty file to prevent local users from exploiting the race condition in the s xout kernel module until a patch is available. At the moment, there is no information about a newer version that contains a fix for this issue.

Fix

Race Condition

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-362

Related Identifiers

CVE-2008-5009

Affected Products

Sun Solstice X.25

PT-2008-6177 · Sun · Sun Solstice X.25

CVE-2008-5009

Weakness Enumeration

Related Identifiers

Affected Products

References · 9