CVE-2009-2857
The kernel in Sun Solaris 8, 9, and 10, and OpenSolaris before snv_103, does not properly handle interaction between the filesystem and virtual-memory implementations, which allows local users to cause a denial of service (deadlock and system halt) via vectors involving mmap and write operations on the same file.
Published
2009-08-19T17:30:01.170
Last Modified
2025-04-09T00:30:58.490
Status
Deferred
Source
[email protected]
Severity
CVSSv3.1: 5.5 (MEDIUM)
CVSSv2 Vector
AV:L/AC:L/Au:N/C:N/I:N/A:C
- Access Vector: LOCAL
- Access Complexity: LOW
- Authentication: NONE
- Confidentiality Impact: NONE
- Integrity Impact: NONE
- Availability Impact: COMPLETE
Exploitability Score
3.9
Impact Score
6.9
Weaknesses
-
Type: Primary
CWE-667
-
Type: Secondary
CWE-667
Affected Vendors & Products
References
-
http://secunia.com/advisories/36319
Broken Link, Vendor Advisory
([email protected])
-
http://sunsolve.sun.com/search/document.do?assetkey=1-21-127721-02-1
Broken Link, Patch
([email protected])
-
http://sunsolve.sun.com/search/document.do?assetkey=1-66-257848-1
Broken Link, Patch, Vendor Advisory
([email protected])
-
http://www.vupen.com/english/advisories/2009/2291
Broken Link, Vendor Advisory
([email protected])
-
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6152
Broken Link
([email protected])
-
http://secunia.com/advisories/36319
Broken Link, Vendor Advisory
(af854a3a-2127-422b-91ae-364da2661108)
-
http://sunsolve.sun.com/search/document.do?assetkey=1-21-127721-02-1
Broken Link, Patch
(af854a3a-2127-422b-91ae-364da2661108)
-
http://sunsolve.sun.com/search/document.do?assetkey=1-66-257848-1
Broken Link, Patch, Vendor Advisory
(af854a3a-2127-422b-91ae-364da2661108)
-
http://www.vupen.com/english/advisories/2009/2291
Broken Link, Vendor Advisory
(af854a3a-2127-422b-91ae-364da2661108)
-
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6152
Broken Link
(af854a3a-2127-422b-91ae-364da2661108)