QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2008-3666

Back to search

CVE-2008-3666

Published: Aug 13, 2008

Modified: Aug 7, 2024

PUBLISHED

Description

Unspecified vulnerability in Sun Solaris 10 and OpenSolaris before snv_96 allows (1) context-dependent attackers to cause a denial of service (panic) via vectors involving creation of a crafted file and use of the sendfilev system call, as demonstrated by a file served by an Apache 2.2.x web server with EnableSendFile configured; and (2) local users to cause a denial of service (panic) via a call to the sendfile system call, as reachable through the sendfilev library.

VendorProductVersions

n/a

n/a

affected
n/a

References

oval:org.mitre.oval:def:5128
vdb-entry
signature
x_refsource_OVAL
239186
vendor-advisory
x_refsource_SUNALERT
ADV-2008-2337
vdb-entry
x_refsource_VUPEN
47375
vdb-entry
x_refsource_OSVDB
31426
third-party-advisory
x_refsource_SECUNIA
1020666
vdb-entry
x_refsource_SECTRACK
sun-solaris-sendfilev-dos(44396)
vdb-entry
x_refsource_XF
30654
vdb-entry
x_refsource_BID

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now