{"vuid":"VU#390742","idnumber":"390742","name":"Sun Solaris Volume Manager (SVM) fails to properly handle malformed probe requests","keywords":["Sun Solaris","Volume Manager","SVM","DoS","denial of service","malformed probe request"],"overview":"There is a vulnerability in the Sun Solaris Volume Manager (SVM) that could allow a local user to cause a denial-of-service condition.","clean_desc":"The Sun Volume Manager is a component of the Solaris operating system and provides disk and storage management. There is a vulnerability in the way the Sun Volume Manager handles certain types of probe requests. By supplying an incorrectly formed probe request, a local user could cause a denial-of-service condition on a Solaris 9 system with this service configured.","impact":"A local user could cause a denial-of-service condition.","resolution":"Apply patch\nSun has issued an advisory which addresses this issue. For more information on patches available for your system, please refer to Sun Security Alert 57598.","workarounds":"","sysaffected":"","thanks":"This vulnerability was reported by Sun Microsystems.","author":"This document was written by Damon Morda.","public":["http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert/57598","http://www.sun.com/bigadmin/descAll/suns_volume_manager_.html","http://www.securitytracker.com/alerts/2004/Jul/1010736.html","http://secunia.com/advisories/12104/"],"cveids":[""],"certadvisory":"","uscerttechnicalalert":null,"datecreated":"2004-07-20T16:58:34Z","publicdate":"2004-07-16T00:00:00Z","datefirstpublished":"2004-07-26T19:08:28Z","dateupdated":"2004-07-26T19:10:14Z","revision":9,"vrda_d1_directreport":"","vrda_d1_population":"","vrda_d1_impact":"","cam_widelyknown":"15","cam_exploitation":"0","cam_internetinfrastructure":"9","cam_population":"15","cam_impact":"8","cam_easeofexploitation":"5","cam_attackeraccessrequired":"10","cam_scorecurrent":"2.7","cam_scorecurrentwidelyknown":"3.2625","cam_scorecurrentwidelyknownexploited":"5.5125","ipprotocol":"","cvss_accessvector":"","cvss_accesscomplexity":"","cvss_authentication":null,"cvss_confidentialityimpact":"","cvss_integrityimpact":"","cvss_availabilityimpact":"","cvss_exploitablity":null,"cvss_remediationlevel":"","cvss_reportconfidence":"","cvss_collateraldamagepotential":"","cvss_targetdistribution":"","cvss_securityrequirementscr":"","cvss_securityrequirementsir":"","cvss_securityrequirementsar":"","cvss_basescore":"","cvss_basevector":"","cvss_temporalscore":"","cvss_environmentalscore":"","cvss_environmentalvector":"","metric":2.7,"vulnote":null}