The Third Party Vulnerability Resolution Blog covers CVEs and patches in Systems product suite.

Sun Alert 102343 Potential Kernel Memory Disclosure Vulnerability in the Solaris sysinfo(2) System Call

Guest Author
Product: Solaris 10 Operating System

Due to a vulnerability in the Solaris sysinfo(2) system call, a local unprivileged user may be able to read portions of kernel memory, which may contain sensitive data.

Sun acknowledges with thanks iDefense/VeriSign for bringing this issue to our attention.

This issue is also described at http://www.idefense.com/intelligence/vulnerabilities/display.php?id=410

Avoidance: Patch
State: Resolved
First released: 21-Jul-2006

Be the first to comment

Comments ( 0 )
Please enter your name.Please provide a valid email address.Please enter a comment.CAPTCHA challenge response provided was incorrect. Please try again.