PT-2008-6257 · Sun+1 · Opensolaris+2

Published

2008-11-17

Updated

2017-08-08

CVE-2008-5111

CVSS v2.0

4.7

Medium

Vector

AV:L/AC:M/Au:N/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions Sun Solaris versions 10 and OpenSolaris snv 57 through snv 91

Description The issue is related to an unspecified vulnerability in the socket function. When InfiniBand hardware is not installed, it allows local users to cause a denial of service, resulting in a system panic. This is related to the socksdpv close function.

Recommendations For Sun Solaris versions 10 and OpenSolaris snv 57 through snv 91, consider restricting access to the socket function until a fix is available. As a temporary workaround, disabling the socksdpv close function may help minimize the risk of exploitation.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2008-5111

Affected Products

Infiniband

Opensolaris

Sun Solaris

PT-2008-6257 · Sun+1 · Opensolaris+2

CVE-2008-5111

Related Identifiers

Affected Products

References · 7