In association with heise online

09 June 2008, 11:46

Security hole in Sun Solaris left unpatched for months

  • Twitter
  • Facebook
  • submit to slashdot
  • StumbleUpon
  • submit to reddit

Sun Microsystems has reported a vulnerability allowing logged-in users to crash or compromise a Solaris system, some six months after the problem first became apparent. The bug is an off-by-one buffer overflow in the inet_network function in the libsocket and libresolv libraries as well as the and SunOS 4.x binary compatibility libraries in Solaris. The function resolves IP addresses into plain text names and vice versa.

All applications which use the vulnerable library are affected. In principle, the hole may also be exploited remotely if a network application submits parameters entered remotely to the function without further checks.

Sun has so far not provided a fix or suggested a workaround. Other vendors including IBM, Suse, Red Hat and ISC(BIND) have fixed this problem in their own systems some time ago.

See also:


Print Version | Send by email | Permalink:

  • July's Community Calendar

The H Open

The H Security

The H Developer

The H Internet Toolkit