Overview
There is a vulnerability in Sun Solaris that could allow local users to cause a denial of service when the Basic Security Module (BSM) is configured to perform auditing of specific audit classes.
Description
Sun Microsystems describes the Basic Security Module (BSM) as a "security auditing subsystem and a device allocation mechanism that provides the required object reuse characteristics for removable or assignable devices." There is a vulnerability in Sun Solaris systems with BSM enabled that could allow local users to cause a system panic. According to the Sun Security Alert: |
Impact
A local unprivileged user could cause a denial-of-service condition. |
Solution
Sun has issued an advisory which addresses this issue. For more information on patches available for your system, please refer to Sun Security Alert: 57497. |
Vendor Information
CVSS Metrics
Group | Score | Vector |
---|---|---|
Base | ||
Temporal | ||
Environmental |
References
Acknowledgements
This vulnerability was reported by Sun Microsystems Inc.
This document was written by Damon Morda.
Other Information
CVE IDs: | None |
Severity Metric: | 3.47 |
Date Public: | 2004-06-22 |
Date First Published: | 2004-06-28 |
Date Last Updated: | 2004-06-28 19:08 UTC |
Document Revision: | 9 |