Vulnerability Development mailing list archives

Previous By Date Next
Previous By Thread Next

Re: solaris DoS (fwd)

From: eparker () MINDSEC COM (Erik Parker)
Date: Thu, 7 Oct 1999 12:37:32 -0600

There was a new 2.6 patch set released yesterday.. I'm going
to apply that on saturday and see how it goes. Perhaps if we could
capture the dump that it does.. Or perhaps that is stored somewhere..
It seems to have a lot of info in the dump.

Also, something strange.. on the same machine.. one time it panic'd one of
the processors, and the box did a sort of fast shut down..

Another time, the both just rebooted. It seems to have strange effects.

On Thu, 7 Oct 1999, Drazen Kacar wrote:


Erik Parker wrote:

Solaris 2.6 (105181-15): not vulnerable
Solaris 7 (106541-07): not vulnerable
Solaris 8 beta: not vulnerable



I have confirmed this DOES work on Solaris 2.6 105181-16.


Hmm. I just tried on another host with 105181-14 and it crashed. Then I
installed the current recommended patch set (which has 105181-16) and
it doesn't crash any more. Perhaps another patch (TCP, most likely)
is relevant. Prior to patching, that host had a fairly old revision of
tcp patch.

--
 .-.   .-.    Life is a sexually transmitted disease.
(_  \ /  _)
     |        dave () srce hr
     |        dave () fly srk fer hr



Erik Parker
eparker () mindsec com
Previous By Date Next
Previous By Thread Next

Current thread: