CVE-2008-3426

Unspecified vulnerability in the Solaris Platform Information and Control Library daemon (picld) in Sun Solaris 8 through 10, and OpenSolaris builds snv_01 through snv_95, allows local users to cause a denial of service via unknown vectors that prevent operation of utilities such as prtdiag, prtpicl, and prtfru.

CVSS v2.0 2.1 LOW

2.1^/10

CVSS v2.0 : LOW

V2 Legend

Vector : AV:L/AC:L/Au:N/C:N/I:N/A:P

Exploitability : 3.9 / Impact : 2.9

Access Vector LOCAL

Access Complexity LOW

Authentication NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact PARTIAL

References

Link	Resource
http://secunia.com/advisories/31303	Vendor Advisory
http://secunia.com/advisories/31501
http://sunsolve.sun.com/search/document.do?assetkey=1-26-239728-1
http://support.avaya.com/elmodocs2/security/ASA-2008-351.htm
http://www.securityfocus.com/bid/30450
http://www.securitytracker.com/id?1020609
http://www.vupen.com/english/advisories/2008/2262/references
https://exchange.xforce.ibmcloud.com/vulnerabilities/44117
http://secunia.com/advisories/31303	Vendor Advisory
http://secunia.com/advisories/31501
http://sunsolve.sun.com/search/document.do?assetkey=1-26-239728-1
http://support.avaya.com/elmodocs2/security/ASA-2008-351.htm
http://www.securityfocus.com/bid/30450
http://www.securitytracker.com/id?1020609
http://www.vupen.com/english/advisories/2008/2262/references
https://exchange.xforce.ibmcloud.com/vulnerabilities/44117

Configurations

Configuration 1 (hide)

OR	cpe:2.3:o:sun:opensolaris::::::::
	cpe:2.3:o:sun:opensolaris:::sparc:::::*
	cpe:2.3:o:sun:opensolaris:::x86:::::*
	cpe:2.3:o:sun:solaris:8::sparc:::::
	cpe:2.3:o:sun:solaris:8::x86:::::
	cpe:2.3:o:sun:solaris:9::sparc:::::
	cpe:2.3:o:sun:solaris:9::x86:::::
	cpe:2.3:o:sun:solaris:10::sparc:::::
	cpe:2.3:o:sun:solaris:10::x86:::::
	cpe:2.3:o:sun:sunos:5.8:::::::*
	cpe:2.3:o:sun:sunos:5.9:::::::*
	cpe:2.3:o:sun:sunos:5.10:::::::*

History

21 Nov 2024, 00:49

Type	Values Removed	Values Added
References	~~() http://secunia.com/advisories/31303 - Vendor Advisory~~	() http://secunia.com/advisories/31303 - Vendor Advisory
References	~~() http://secunia.com/advisories/31501 -~~	() http://secunia.com/advisories/31501 -
References	~~() http://sunsolve.sun.com/search/document.do?assetkey=1-26-239728-1 -~~	() http://sunsolve.sun.com/search/document.do?assetkey=1-26-239728-1 -
References	~~() http://support.avaya.com/elmodocs2/security/ASA-2008-351.htm -~~	() http://support.avaya.com/elmodocs2/security/ASA-2008-351.htm -
References	~~() http://www.securityfocus.com/bid/30450 -~~	() http://www.securityfocus.com/bid/30450 -
References	~~() http://www.securitytracker.com/id?1020609 -~~	() http://www.securitytracker.com/id?1020609 -
References	~~() http://www.vupen.com/english/advisories/2008/2262/references -~~	() http://www.vupen.com/english/advisories/2008/2262/references -
References	~~() https://exchange.xforce.ibmcloud.com/vulnerabilities/44117 -~~	() https://exchange.xforce.ibmcloud.com/vulnerabilities/44117 -

Information

Published : 2008-07-31 22:41

Updated : 2025-04-09 00:30

NVD link : CVE-2008-3426

Mitre link : CVE-2008-3426

CVE.ORG link : CVE-2008-3426

JSON object : View

Products Affected

sun

sunos
opensolaris
solaris

CWE

NVD-CWE-noinfo

{"id": "CVE-2008-3426", "cveTags": [], "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 2.1, "accessVector": "LOCAL", "vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:P", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "NONE"}, "acInsufInfo": true, "impactScore": 2.9, "baseSeverity": "LOW", "obtainAllPrivilege": false, "exploitabilityScore": 3.9, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2008-07-31T22:41:00.000", "references": [{"url": "http://secunia.com/advisories/31303", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://secunia.com/advisories/31501", "source": "cve@mitre.org"}, {"url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-239728-1", "source": "cve@mitre.org"}, {"url": "http://support.avaya.com/elmodocs2/security/ASA-2008-351.htm", "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/bid/30450", "source": "cve@mitre.org"}, {"url": "http://www.securitytracker.com/id?1020609", "source": "cve@mitre.org"}, {"url": "http://www.vupen.com/english/advisories/2008/2262/references", "source": "cve@mitre.org"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/44117", "source": "cve@mitre.org"}, {"url": "http://secunia.com/advisories/31303", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://secunia.com/advisories/31501", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-239728-1", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://support.avaya.com/elmodocs2/security/ASA-2008-351.htm", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securityfocus.com/bid/30450", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securitytracker.com/id?1020609", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.vupen.com/english/advisories/2008/2262/references", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/44117", "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Deferred", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-noinfo"}]}], "descriptions": [{"lang": "en", "value": "Unspecified vulnerability in the Solaris Platform Information and Control Library daemon (picld) in Sun Solaris 8 through 10, and OpenSolaris builds snv_01 through snv_95, allows local users to cause a denial of service via unknown vectors that prevent operation of utilities such as prtdiag, prtpicl, and prtfru."}, {"lang": "es", "value": "Vulnerabilidad no especificada del demonio Solaris Platform Information and Control Library daemon (picld) en Sun Solaris versi\u00f3n 8 hasta la 10, y OpenSolaris builds versi\u00f3n snv_01 hasta la snv_95, permite a usuarios locales provocar una denegaci\u00f3n de servicio a trav\u00e9s de vectores desconocidos que impiden operaciones con utilidades como prtdiag, prtpicl, y prtfru."}], "lastModified": "2025-04-09T00:30:58.490", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:sun:opensolaris:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "19FE69F8-3726-4B21-9B78-E9920B046564"}, {"criteria": "cpe:2.3:o:sun:opensolaris:*:*:sparc:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "097D3A0C-8C75-4951-94C7-4C444DE2B0D4"}, {"criteria": "cpe:2.3:o:sun:opensolaris:*:*:x86:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F8222C41-435E-4017-A8C7-D7AB624A6D05"}, {"criteria": "cpe:2.3:o:sun:solaris:8:*:sparc:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6DBDFD8C-371E-42D2-9635-D8CDD1775984"}, {"criteria": "cpe:2.3:o:sun:solaris:8:*:x86:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E2F84D4E-EFE1-4A4F-BB58-E665A9C307A0"}, {"criteria": "cpe:2.3:o:sun:solaris:9:*:sparc:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "14CFA6D3-A611-4DF0-97AB-C30B79833DFA"}, {"criteria": "cpe:2.3:o:sun:solaris:9:*:x86:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F2F5901D-AB91-4F12-BF08-0BC3797833E8"}, {"criteria": "cpe:2.3:o:sun:solaris:10:*:sparc:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7FBA68F0-4577-46F5-A754-D365B6EFF872"}, {"criteria": "cpe:2.3:o:sun:solaris:10:*:x86:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E79CFAA6-A08A-4C70-A3D9-B02C29A17FF2"}, {"criteria": "cpe:2.3:o:sun:sunos:5.8:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A2475113-CFE4-41C8-A86F-F2DA6548D224"}, {"criteria": "cpe:2.3:o:sun:sunos:5.9:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A1E585DC-FC74-4BB0-96B7-C00B6DB610DF"}, {"criteria": "cpe:2.3:o:sun:sunos:5.10:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E75493D0-F060-4CBA-8AB0-C4FE8B2A8C9B"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}

2.1 /10