CVE-2009-0304

Sun Solaris 10-11 & OpenSolaris - DoS

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2009-0304. PoCs published by kingcope.

AI-analyzed exploit summary This exploit sends a malformed IPv6 packet to trigger a kernel crash (DoS) in SunOS 5.11 snv_101b. It constructs a raw socket packet with a hardcoded payload and injects the target IPv6 address.

Description

The kernel in Sun Solaris 10 and 11 snv_101b, and OpenSolaris before snv_108, allows remote attackers to cause a denial of service (system crash) via a crafted IPv6 packet, related to an "insufficient validation security vulnerability," as demonstrated by SunOSipv6.c.

Exploits (1)

exploitdb WORKING POC VERIFIED
by kingcope · cdossolaris
https://www.exploit-db.com/exploits/7865

This exploit sends a malformed IPv6 packet to trigger a kernel crash (DoS) in SunOS 5.11 snv_101b. It constructs a raw socket packet with a hardcoded payload and injects the target IPv6 address.

Classification
Working Poc 95%
Attack Type
Dos
Complexity
Trivial
Reliability
Reliable
Target: SunOS 5.11 snv_101b
No auth needed
Prerequisites: IPv6 connectivity to target · raw socket permissions
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (8)

Core 8
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/48208
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/33605
Vendor Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2009/0232
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/33435
Exploit, Third Party Advisory exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/7865
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://securitytracker.com/id?1021635
Vendor Advisory vendor-advisory x_refsource_sunalert
http://sunsolve.sun.com/search/document.do?assetkey=1-66-251006-1

Scores

EPSS 0.0980
EPSS Percentile 94.9%

Details

Status published
Products (25)
sun/opensolaris snv_01 (2 CPE variants)
sun/opensolaris snv_02 (2 CPE variants)
sun/opensolaris snv_03 (2 CPE variants)
sun/opensolaris snv_04 (2 CPE variants)
sun/opensolaris snv_05 (2 CPE variants)
sun/opensolaris snv_06 (2 CPE variants)
sun/opensolaris snv_07 (2 CPE variants)
sun/opensolaris snv_08 (2 CPE variants)
sun/opensolaris snv_09 (2 CPE variants)
sun/opensolaris snv_10 (2 CPE variants)
... and 15 more
Published Jan 27, 2009
Tracked Since Feb 18, 2026