Main Vulnerability Database Vulnerabilities #VU44590

Input validation error in Oracle Solaris - CVE-2011-3534

Published: October 19, 2011 / Updated: August 11, 2020

Vulnerability identifier: #VU44590

CSH Severity: Medium

CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:U/U:Green

CVE-ID: CVE-2011-3534

CWE-ID: CWE-20

Exploitation vector: Remote access

Exploit availability: No public exploit available

Vendor: Oracle

Affected software:
Oracle Solaris

Detailed vulnerability description

The vulnerability allows a remote non-authenticated attacker to perform service disruption.

Unspecified vulnerability in Oracle Solaris 8, 9, 10, and 11 Express allows remote attackers to affect availability via unknown vectors related to Network Status Monitor (statd).

How to mitigate CVE-2011-3534

Install update from vendor's website.

Sources

http://osvdb.org/76469
http://www.oracle.com/technetwork/topics/security/cpuoct2011-330135.html
http://www.securityfocus.com/bid/50251
https://exchange.xforce.ibmcloud.com/vulnerabilities/70807

Input validation error in Oracle Solaris - CVE-2011-3534

Detailed vulnerability description

How to mitigate CVE-2011-3534

Sources

Please verify you're human