Overview
There is a vulnerability in Sun Solaris that could allow local users to cause a denial of service when the Basic Security Module (BSM) is configured to perform auditing of specific audit classes.
Description
Sun Microsystems describes the Basic Security Module (BSM) as a "security auditing subsystem and a device allocation mechanism that provides the required object reuse characteristics for removable or assignable devices." There is a vulnerability in Sun Solaris systems with BSM enabled that could allow local users to cause a system panic. According to the Sun Security Alert: |
Impact
A local unprivileged user could cause a denial-of-service condition. |
Solution
Sun has issued an advisory which addresses this issue. For more information on patches available for your system, please refer to Sun Security Alert: 57497. |
Vendor Information
CVSS Metrics
| Group | Score | Vector |
|---|---|---|
| Base | ||
| Temporal | ||
| Environmental |
References
Acknowledgements
This vulnerability was reported by Sun Microsystems Inc.
This document was written by Damon Morda.
Other Information
| CVE IDs: | None |
| Severity Metric: | 3.47 |
| Date Public: | 2004-06-22 |
| Date First Published: | 2004-06-28 |
| Date Last Updated: | 2004-06-28 19:08 UTC |
| Document Revision: | 9 |