Main Vulnerability Database Vulnerabilities #VU40692

Input validation error in Oracle Solaris - CVE-2015-2651

Published: July 16, 2015 / Updated: August 9, 2020

Vulnerability identifier: #VU40692

CSH Severity: Low

CVSS v4.0: CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear

CVE-ID: CVE-2015-2651

CWE-ID: CWE-20

Exploitation vector: Local access

Exploit availability: No public exploit available

Vendor: Oracle

Affected software:
Oracle Solaris

Detailed vulnerability description

The vulnerability allows a local #AU# to perform a denial of service (DoS) attack.

Unspecified vulnerability in Oracle Sun Solaris 11.2 allows local users to affect availability via vectors related to Kernel Zones virtualized NIC driver.

How to mitigate CVE-2015-2651

Install update from vendor's website.

Sources

http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html
http://www.securitytracker.com/id/1032914

Input validation error in Oracle Solaris - CVE-2015-2651

Detailed vulnerability description

How to mitigate CVE-2015-2651

Sources

Please verify you're human