PT-2009-5480 · Sun+1 · Opensolaris+2

Published

2009-09-10

Updated

2010-06-25

CVE-2009-3164

CVSS v2.0

7.1

High

Vector

AV:N/AC:M/Au:N/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions: Sun Solaris 10 OpenSolaris versions snv 01 through snv 82 OpenSolaris versions snv 111 through snv 122

Description: The issue is related to an unspecified vulnerability in the IPv6 networking stack when a Cassini GigaSwift Ethernet Adapter interface is used. This vulnerability allows remote attackers to cause a denial of service, resulting in a system panic, via vectors involving jumbo frames.

Recommendations: For Sun Solaris 10, apply the recommended patch to fix the issue. For OpenSolaris versions snv 01 through snv 82, consider disabling the Cassini GigaSwift Ethernet Adapter interface until a patch is available. For OpenSolaris versions snv 111 through snv 122, restrict the use of jumbo frames on the affected interface to minimize the risk of exploitation.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2009-3164

Affected Products

Cassini Gigaswift Ethernet Adapter

Opensolaris

Sun Solaris 10

PT-2009-5480 · Sun+1 · Opensolaris+2

CVE-2009-3164

Related Identifiers

Affected Products

References · 6