Description
The NFSv4 Server module in the kernel in Sun Solaris 10, and OpenSolaris before snv_111, allow local users to cause a denial of service (infinite loop and system hang) by accessing an hsfs filesystem that is shared through NFSv4, related to the rfs4_op_readdir function.
References (10)
Core 10
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/49133
Third Party Advisory vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2009/0765
Vendor Advisory vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2009/0635
Vendor Advisory x_refsource_confirm
http://support.avaya.com/elmodocs2/security/ASA-2009-090.htm
Patch, Vendor Advisory vendor-advisory
x_refsource_sunalert
http://sunsolve.sun.com/search/document.do?assetkey=1-66-252469-1
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://securitytracker.com/id?1021819
Patch x_refsource_confirm
http://sunsolve.sun.com/search/document.do?assetkey=1-21-139462-02-1
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/34371
Patch vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/34031
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/34193
Scores
EPSS
0.0006
EPSS Percentile
18.2%
Details
CWE
CWE-399
Status
published
Products (50)
sun/opensolaris
snv_01
sun/opensolaris
snv_02
sun/opensolaris
snv_03
sun/opensolaris
snv_04
sun/opensolaris
snv_05
sun/opensolaris
snv_06
sun/opensolaris
snv_07
sun/opensolaris
snv_08
sun/opensolaris
snv_09
sun/opensolaris
snv_10
... and 40 more
Published
Mar 10, 2009
Tracked Since
Feb 18, 2026