Just a quick heads up - Sun has issued a Security Alert about a vulnerability in IPv6 in Solaris 10 and OpenSolaris builds 101 - 107:
SunAlert: 251006
Title: A Security Vulnerability in Solaris IPv6 Implementation (ip6(7p)) May Cause a System Panic
An insufficient validation security vulnerability in the Solaris IPv6 implementation (ip6(7p)) may allow a remote privileged user to panic the system using a crafted packet. This is a type of Denial of Service (DoS).
An IDR/ISR is available for this issue and is linked to in the SunAlert.
If you’re in an environment which needs approval before applying any patches, or who can’t use test patches in production, the SunAlert also details two workarounds:
- Disable IPv6:
# ifconfig -a6 down - IPFilter Rule:
block in quick all with short
As this is a publicly available document and vulnerability, it is highly recommended that you apply the IDR/ISR or one of the workarounds ASAP.
If you’re not using IPv6 at all, then you have nothing to worry about.
Search
Recommended Book
Related Entries
- Links for 9 August 2007 - 6 September 2007
- Links for 27 Nov 2007 - 11 Jan 2008
- Comment on Slashdot
- Links for 9 May 2007 - 13 May 2007
- Windows Vista Speech Remote Exploit Bug
- Links for 12 Oct 2008 - 14 Oct 2008
- Telnet/login Vuln in Solaris 10/OpenSolaris. Disable Telnet NOW!!
- Links for 1 Feb 2008 - 14 Feb 2008
- Links for 13 Jan 2008 - 27 Jan 2008
- Download Solaris 10 11/06 Now
No Responses to “IPv6 Vulnerability in Solaris 10 and OpenSolaris”
Please Wait
Speak Your Mind