CVE-2006-3824
Solaris 10 - 'sysinfo()' Local Kernel Memory Disclosure
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
3Exploited in Wild
-Decision
Descriptions
systeminfo.c for Sun Solaris allows local users to read kernel memory via a 0 variable count argument to the sysinfo system call, which causes a -1 argument to be used by the copyout function. NOTE: this issue has been referred to as an integer overflow, but it is probably more like a signedness error or integer underflow.
systeminfo.c para Sun Solaris permite a usuarios locales leer memoria del núcleo mediante un valor 0 para el argumento de número de variables en la llamada al sistema sysinfo, lo cual provoca que se utilice un argumento -1 en la función copyout. NOTA: este problema ha sido referido como un desbordamiento superior de entero, pero probablemente se parece más a un error de presencia de signo o un desbordamiento inferior de entero.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2006-07-24 CVE Reserved
- 2006-07-24 First Exploit
- 2006-07-25 CVE Published
- 2023-03-08 EPSS Updated
- 2024-08-07 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
CAPEC
References (11)
| URL | Tag | Source |
|---|---|---|
| http://secunia.com/advisories/21148 | Third Party Advisory | |
| http://securitytracker.com/id?1016555 | Vdb Entry | |
| http://www.idefense.com/intelligence/vulnerabilities/display.php?id=410 | Third Party Advisory | |
| http://www.securityfocus.com/archive/1/440849/100/100/threaded | Mailing List | |
| http://www.securityfocus.com/archive/1/440986/100/100/threaded | Mailing List | |
| http://www.vupen.com/english/advisories/2006/2936 | Vdb Entry | |
| https://exchange.xforce.ibmcloud.com/vulnerabilities/27901 | Vdb Entry |
| URL | Date | SRC |
|---|---|---|
| https://www.exploit-db.com/exploits/2067 | 2006-07-24 | |
| https://www.exploit-db.com/exploits/2241 | 2006-08-22 | |
| http://www.securityfocus.com/bid/19104 | 2024-08-07 |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| http://sunsolve.sun.com/search/document.do?assetkey=1-26-102343-1 | 2018-10-17 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Sun Search vendor "Sun" | Solaris Search vendor "Sun" for product "Solaris" | 10.0 Search vendor "Sun" for product "Solaris" and version "10.0" | sparc |
Affected
| ||||||
| Sun Search vendor "Sun" | Solaris Search vendor "Sun" for product "Solaris" | 10.0 Search vendor "Sun" for product "Solaris" and version "10.0" | x86 |
Affected
| ||||||