CVE-2009-2187

Name of the Vulnerable Software and Affected Versions Sun Solaris 10 OpenSolaris versions snv 67 through snv 93

Description The issue is related to multiple memory leaks in the IP and IPv6 multicast implementation in the kernel. Local users can cause a denial of service due to memory consumption by exploiting the association of certain messages with ARP messages, specifically DL ENABMULTI REQ and DL DISABMULTI REQ messages.

Recommendations For Sun Solaris 10, apply the recommended patch to fix the memory leaks. For OpenSolaris versions snv 67 through snv 93, upgrade to a version later than snv 93 to resolve the issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability for other versions.