Sign-up

ID

VAR-200806-0162


CVE

CVE-2008-2707


TITLE

Sun Solaris of e1000g Service disruption in drivers (DoS) Vulnerabilities

Trust: 0.8

sources: JVNDB: JVNDB-2008-001461

DESCRIPTION

Unspecified vulnerability in the e1000g driver in Sun Solaris 10 and OpenSolaris before snv_93 allows remote attackers to cause a denial of service (network connectivity loss) via unknown vectors. Sun Solaris of e1000g The driver has a service disruption (DoS) Vulnerabilities exist.Service disruption by a malicious local user (DoS) There is a possibility of being put into a state. An attacker can exploit this issue to block all inbound network packets on the affected system, resulting in a denial-of-service condition. This issue affects Solaris 10 and OpenSolaris for SPARC and x86 platforms. This can be exploited to block all incoming traffic to the system. SOLUTION: Apply patches. PROVIDED AND/OR DISCOVERED BY: Reported by the vendor. ORIGINAL ADVISORY: http://sunsolve.sun.com/search/document.do?assetkey=1-66-238250-1 ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help everybody keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org ----------------------------------------------------------------------

Trust: 2.16

sources: NVD: CVE-2008-2707 // JVNDB: JVNDB-2008-001461 // BID: 29730 // VULHUB: VHN-32832 // VULMON: CVE-2008-2707 // PACKETSTORM: 67376

AFFECTED PRODUCTS

vendor:intelmodel:network interface controllerscope:eqversion:82571

Trust: 1.0

vendor:intelmodel:network interface controllerscope:eqversion:82572

Trust: 1.0

vendor:sun microsystemsmodel:opensolarisscope:eqversion:(sparc)

Trust: 0.8

vendor:sun microsystemsmodel:opensolarisscope:eqversion:(x86)

Trust: 0.8

vendor:sun microsystemsmodel:solarisscope:eqversion:10 (sparc)

Trust: 0.8

vendor:sun microsystemsmodel:solarisscope:eqversion:10 (x86)

Trust: 0.8

vendor:sunmodel:opensolarisscope:eqversion:10

Trust: 0.6

vendor:sunmodel:solarisscope:eqversion:10

Trust: 0.6

vendor:sunmodel:solaris 10 x86scope: - version: -

Trust: 0.3

vendor:sunmodel:solaris 10 sparcscope: - version: -

Trust: 0.3

vendor:sunmodel:opensolaris build snv 92scope: - version: -

Trust: 0.3

vendor:sunmodel:opensolaris build snv 22scope: - version: -

Trust: 0.3

vendor:sunmodel:opensolaris build snv 19scope: - version: -

Trust: 0.3

sources: BID: 29730 // JVNDB: JVNDB-2008-001461 // CNNVD: CNNVD-200806-220 // NVD: CVE-2008-2707

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2008-2707
value: HIGH

Trust: 1.0

NVD: CVE-2008-2707
value: HIGH

Trust: 0.8

CNNVD: CNNVD-200806-220
value: HIGH

Trust: 0.6

VULHUB: VHN-32832
value: HIGH

Trust: 0.1

VULMON: CVE-2008-2707
value: HIGH

Trust: 0.1

nvd@nist.gov: CVE-2008-2707
severity: HIGH
baseScore: 7.8
vectorString: AV:N/AC:L/AU:N/C:N/I:N/A:C
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: COMPLETE
exploitabilityScore: 10.0
impactScore: 6.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.9

VULHUB: VHN-32832
severity: HIGH
baseScore: 7.8
vectorString: AV:N/AC:L/AU:N/C:N/I:N/A:C
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: COMPLETE
exploitabilityScore: 10.0
impactScore: 6.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

sources: VULHUB: VHN-32832 // VULMON: CVE-2008-2707 // JVNDB: JVNDB-2008-001461 // CNNVD: CNNVD-200806-220 // NVD: CVE-2008-2707

PROBLEMTYPE DATA

problemtype:CWE-264

Trust: 1.9

problemtype:NVD-CWE-noinfo

Trust: 1.0

problemtype:CWE-noinfo

Trust: 0.8

sources: VULHUB: VHN-32832 // JVNDB: JVNDB-2008-001461 // NVD: CVE-2008-2707

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-200806-220

TYPE

permissions and access control

Trust: 0.6

sources: CNNVD: CNNVD-200806-220

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2008-001461

PATCH
title:238250url:http://sunsolve.sun.com/search/document.do?assetkey=1-26-238250-1
Trust: 0.8
sources:
            
            
            JVNDB: JVNDB-2008-001461

EXTERNAL IDS
db:NVDid:CVE-2008-2707
Trust: 2.9
db:BIDid:29730
Trust: 2.9
db:SECUNIAid:30700
Trust: 2.7
db:SECTRACKid:1020290
Trust: 2.6
db:VUPENid:ADV-2008-1835
Trust: 1.8
db:JVNDBid:JVNDB-2008-001461
Trust: 0.8
db:CNNVDid:CNNVD-200806-220
Trust: 0.7
db:XFid:1000
Trust: 0.6
db:XFid:43096
Trust: 0.6
db:SUNALERTid:238250
Trust: 0.6
db:VULHUBid:VHN-32832
Trust: 0.1
db:VULMONid:CVE-2008-2707
Trust: 0.1
db:PACKETSTORMid:67376
Trust: 0.1
sources:
            
            
            VULHUB: VHN-32832 // 
            
            
            
            VULMON: CVE-2008-2707 // 
            
            
            
            BID: 29730 // 
            
            
            
            JVNDB: JVNDB-2008-001461 // 
            
            
            
            PACKETSTORM: 67376 // 
            
            
            
            CNNVD: CNNVD-200806-220 // 
            
            
            
            NVD: CVE-2008-2707

REFERENCES
url:http://www.securityfocus.com/bid/29730
Trust: 2.7
url:http://securitytracker.com/id?1020290
Trust: 2.6
url:http://secunia.com/advisories/30700
Trust: 1.8
url:http://sunsolve.sun.com/search/document.do?assetkey=1-26-238250-1
Trust: 1.8
url:http://www.frsirt.com/english/advisories/2008/1835
Trust: 1.4
url:http://www.vupen.com/english/advisories/2008/1835
Trust: 1.2
url:https://exchange.xforce.ibmcloud.com/vulnerabilities/43096
Trust: 1.2
url:http://secunia.com/advisories/30700/
Trust: 0.9
url:http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2008-2707
Trust: 0.8
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2008-2707
Trust: 0.8
url:http://xforce.iss.net/xforce/xfdb/43096
Trust: 0.6
url:http://sunsolve.sun.com/search/document.do?assetkey=1-66-238250-1
Trust: 0.4
url:http://www.sun.com/software/solaris/index.jsp
Trust: 0.3
url:https://cwe.mitre.org/data/definitions/264.html
Trust: 0.1
url:https://cwe.mitre.org/data/definitions/.html
Trust: 0.1
url:https://nvd.nist.gov
Trust: 0.1
url:http://secunia.com/secunia_security_advisories/
Trust: 0.1
url:http://secunia.com/product/4813/
Trust: 0.1
url:http://secunia.com/hardcore_disassembler_and_reverse_engineer/
Trust: 0.1
url:http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org
Trust: 0.1
url:http://secunia.com/secunia_security_specialist/
Trust: 0.1
url:http://corporate.secunia.com/about_secunia/64/
Trust: 0.1
url:http://secunia.com/about_secunia_advisories/
Trust: 0.1
sources:
            
            
            VULHUB: VHN-32832 // 
            
            
            
            VULMON: CVE-2008-2707 // 
            
            
            
            BID: 29730 // 
            
            
            
            JVNDB: JVNDB-2008-001461 // 
            
            
            
            PACKETSTORM: 67376 // 
            
            
            
            CNNVD: CNNVD-200806-220 // 
            
            
            
            NVD: CVE-2008-2707

CREDITS
Sun
Trust: 0.9
sources:
            
            
            BID: 29730 // 
            
            
            
            CNNVD: CNNVD-200806-220

SOURCES
db:VULHUBid:VHN-32832
db:VULMONid:CVE-2008-2707
db:BIDid:29730
db:JVNDBid:JVNDB-2008-001461
db:PACKETSTORMid:67376
db:CNNVDid:CNNVD-200806-220
db:NVDid:CVE-2008-2707

LAST UPDATE DATE
2024-11-23T19:40:07.031000+00:00

SOURCES UPDATE DATE
db:VULHUBid:VHN-32832date:2017-08-08T00:00:00
db:VULMONid:CVE-2008-2707date:2017-08-08T00:00:00
db:BIDid:29730date:2015-05-07T17:28:00
db:JVNDBid:JVNDB-2008-001461date:2008-07-09T00:00:00
db:CNNVDid:CNNVD-200806-220date:2008-09-11T00:00:00
db:NVDid:CVE-2008-2707date:2024-11-21T00:47:30.923

SOURCES RELEASE DATE
db:VULHUBid:VHN-32832date:2008-06-16T00:00:00
db:VULMONid:CVE-2008-2707date:2008-06-16T00:00:00
db:BIDid:29730date:2008-06-13T00:00:00
db:JVNDBid:JVNDB-2008-001461date:2008-07-09T00:00:00
db:PACKETSTORMid:67376date:2008-06-17T17:55:44
db:CNNVDid:CNNVD-200806-220date:2008-06-16T00:00:00
db:NVDid:CVE-2008-2707date:2008-06-16T18:41:00