Lucene search

MitreCVE-2006-5396

HistoryOct 18, 2006 - 7:07 p.m.

CVE-2006-5396

2006-10-1819:07:00

mitre

web.nvd.nist.gov

cve-2006-5396

sun solaris

kernel

denial of service

tcp fusion

system crash

nvd

CVSS2

4.9

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:N/I:N/A:C

AI Score

6.1

Confidence

High

EPSS

0.001

Percentile

27.1%

JSON

The tcp_fuse_rcv_drain function in the Sun Solaris 10 kernel before 20061017, when TCP Fusion is enabled, allows local users to cause a denial of service (system crash) via a TCP loopback connection with both endpoints on the same system.

Affected configurations

Nvd

Node

sunsolarisMatch10.0sparc

VendorProductVersionCPE
sunsolaris10.0cpe:2.3:o:sun:solaris:10.0:*:sparc:*:*:*:*:*

Vendor	Product	Version	CPE
sun	solaris	10.0	cpe:2.3:o:sun:solaris:10.0::sparc:::::

References

secunia.com/advisories/22453

securitytracker.com/id?1017082

sunsolve.sun.com/search/document.do?assetkey=1-26-102667-1

www.securityfocus.com/bid/20587

www.vupen.com/english/advisories/2006/4080

exchange.xforce.ibmcloud.com/vulnerabilities/29630

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2199

CVSS2

4.9

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:N/I:N/A:C

AI Score

6.1

Confidence

High

EPSS

0.001

Percentile

27.1%

JSON

Related for CVE-2006-5396