Vigil@nce: Solaris, denial of service on UltraSPARC T2
June 2008 by Vigil@nce
SYNTHESIS
On a Sun UltraSPARC T2 or UltraSPARC T2+ processor, a local
attacker can stop the system.
Gravity: 1/4
Consequences: denial of service of computer
Provenance: user shell
Means of attack: no proof of concept, no attack
Ability of attacker: expert (4/4)
Confidence: confirmed by the editor (5/5)
Diffusion of the vulnerable configuration: medium (2/3)
Creation date: 12/06/2008
Identifier: VIGILANCE-VUL-7893
IMPACTED PRODUCTS
– OpenSolaris [confidential versions]
– Sun Solaris [confidential versions]
DESCRIPTION
The Solaris system can be installed on SPARC processors: SPARC64,
UltraSPARC I-VI, T1, T2, etc.
On a Sun UltraSPARC T2 or UltraSPARC T2 Plus processor, a local
attacker can create a core dump or an error in syscall_trap32(),
which panics the system.
A local attacker can therefore create a denial of service.
CHARACTERISTICS
Identifiers: 238688, 6673119, VIGILANCE-VUL-7893