Main Vulnerability Database Vulnerabilities #VU40692

#VU40692 Input validation error in Oracle Solaris - CVE-2015-2651

Published: July 16, 2015 / Updated: August 9, 2020

Vulnerability identifier: #VU40692

Vulnerability risk: Low

CVSSv4.0: CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear

CVE-ID: CVE-2015-2651

CWE-ID: CWE-20

Exploitation vector: Local access

Exploit availability: No public exploit available

Vulnerable software:
Oracle Solaris

Software vendor:
Oracle

Description

The vulnerability allows a local #AU# to perform a denial of service (DoS) attack.

Unspecified vulnerability in Oracle Sun Solaris 11.2 allows local users to affect availability via vectors related to Kernel Zones virtualized NIC driver.

Remediation

Install update from vendor's website.

External links

http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html
http://www.securitytracker.com/id/1032914