CVE-2008-2121

The TCP implementation in Sun Solaris 8, 9, and 10 allows remote attackers to cause a denial of service (CPU consumption and new connection timeouts) via a TCP SYN flood attack.

CVSS v2.0 7.8 HIGH

7.8^/10

CVSS v2.0 : HIGH

V2 Legend

Vector : AV:N/AC:L/Au:N/C:N/I:N/A:C

Exploitability : 10.0 / Impact : 6.9

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact COMPLETE

References

Link	Resource
http://secunia.com/advisories/30125
http://secunia.com/advisories/30131	Vendor Advisory
http://sunsolve.sun.com/search/document.do?assetkey=1-26-200864-1
http://support.avaya.com/elmodocs2/security/ASA-2008-206.htm
http://www.securityfocus.com/bid/29089	Patch
http://www.securitytracker.com/id?1019989
http://www.vupen.com/english/advisories/2008/1453/references
http://www.vupen.com/english/advisories/2008/1585/references
https://exchange.xforce.ibmcloud.com/vulnerabilities/42264
http://secunia.com/advisories/30125
http://secunia.com/advisories/30131	Vendor Advisory
http://sunsolve.sun.com/search/document.do?assetkey=1-26-200864-1
http://support.avaya.com/elmodocs2/security/ASA-2008-206.htm
http://www.securityfocus.com/bid/29089	Patch
http://www.securitytracker.com/id?1019989
http://www.vupen.com/english/advisories/2008/1453/references
http://www.vupen.com/english/advisories/2008/1585/references
https://exchange.xforce.ibmcloud.com/vulnerabilities/42264

Configurations

Configuration 1 (hide)

OR	cpe:2.3:o:sun:sunos:5.8:::::::*
	cpe:2.3:o:sun:sunos:5.9:::::::*
	cpe:2.3:o:sun:sunos:5.10:::::::*

History

21 Nov 2024, 00:46

Type	Values Removed	Values Added
References	~~() http://secunia.com/advisories/30125 -~~	() http://secunia.com/advisories/30125 -
References	~~() http://secunia.com/advisories/30131 - Vendor Advisory~~	() http://secunia.com/advisories/30131 - Vendor Advisory
References	~~() http://sunsolve.sun.com/search/document.do?assetkey=1-26-200864-1 -~~	() http://sunsolve.sun.com/search/document.do?assetkey=1-26-200864-1 -
References	~~() http://support.avaya.com/elmodocs2/security/ASA-2008-206.htm -~~	() http://support.avaya.com/elmodocs2/security/ASA-2008-206.htm -
References	~~() http://www.securityfocus.com/bid/29089 - Patch~~	() http://www.securityfocus.com/bid/29089 - Patch
References	~~() http://www.securitytracker.com/id?1019989 -~~	() http://www.securitytracker.com/id?1019989 -
References	~~() http://www.vupen.com/english/advisories/2008/1453/references -~~	() http://www.vupen.com/english/advisories/2008/1453/references -
References	~~() http://www.vupen.com/english/advisories/2008/1585/references -~~	() http://www.vupen.com/english/advisories/2008/1585/references -
References	~~() https://exchange.xforce.ibmcloud.com/vulnerabilities/42264 -~~	() https://exchange.xforce.ibmcloud.com/vulnerabilities/42264 -

Information

Published : 2008-05-09 15:20

Updated : 2024-11-21 00:46

NVD link : CVE-2008-2121

Mitre link : CVE-2008-2121

CVE.ORG link : CVE-2008-2121

JSON object : View

Products Affected

sun

sunos

CWE

CWE-16

Configuration

7.8 /10