New Search

Race Condition Security Vulnerability in Solaris Auditing Related to Extended File Attributes May Allow Local Unprivileged Users to Panic the System

oval:org.mitre.oval:def:6168

Race condition in the Solaris Auditing subsystem in Sun Solaris 9 and 10 and OpenSolaris before snv_121 when extended file attributes are used allows local users to cause a denial of service (panic) via vectors related to "pathnames for invalid fds."

Family:
unix
Status:
ACCEPTED
Platform(s):
  • Sun Solaris 10
  • Sun Solaris 9
Class:
vulnerability
Reference(s):
  • CVE-2009-2644
Product(s):