Sun Solaris系统崩溃拒绝服务漏洞发布时间:2002-12-27 更新时间:2002-12-27 严重程度:中 威胁程度:本地拒绝服务 错误类型:设计错误 利用方式:服务器模式 BUGTRAQ ID:6309 受影响系统 Sun Solaris 2.5.1 _x86详细描述 Sun Solaris系统存在漏洞,可使非特权本地用户由于NULL指针废弃而造成内核崩溃。 错误现象如下: BAD TRAP: type=31 rp=2a1006b7480 addr=9a mmu_fsr=0 occurred in module "genunix" due to a NULL pointer dereference stacktrace跟踪类似如下: <trap>genunix:struioget+0x14 (0x300011038b8, 0x30001b19bc0, 0x2a1006b7730, 0x0,...) genunix:strput+0x478 (0x0, 0x2a1006b7a00, 0x300011038b8, 0x8, 0x0, 0x0) genunix:strwrite+0x200 (0x850, 0x2a1006b7930, 0x30000564e48, 0x1000000, ...) genunix:write+0x204 (0x10874, 0x14, 0x3, 0x30001444818, 0x3, 0x14) genunix:write32+0x30 (0x3, 0xfec07cb0, 0x14, 0x7efefeff, 0x81010100, 0xff0000) unix:syscall_trap32+0xa8 (0x3, 0xfec07cb0, 0x14, 0x7efefeff, 0x81010100, 0xff000 测试代码 尚无 解决方案 补丁下载: Sun Solaris 2.5.1 _x86: Sun Upgrade 103641-41 http://sunsolve.sun.com/pub-cgi/findPatch.pl?patchId=103641&rev=41 Sun Solaris 2.5.1: Sun Upgrade 103640-41 http://sunsolve.sun.com/pub-cgi/findPatch.pl?patchId=103640&rev=41 Sun Solaris 2.6 _x86: Sun Patch 105181-33 http://sunsolve.sun.com/pub-cgi/findPatch.pl?patchId=105181&rev=33 Sun Patch 105182-33 http://sunsolve.sun.com/pub-cgi/findPatch.pl?patchId=105182&rev=33 Sun Solaris 2.6: Sun Patch 105181-33 http://sunsolve.sun.com/pub-cgi/findPatch.pl?patchId=105181&rev=33 Sun Solaris 7.0 _x86: Sun Patch 106542-21 http://sunsolve.sun.com/pub-cgi/findPatch.pl?patchId=106542&rev=21 Sun Solaris 7.0: Sun Patch 106541-21 http://sunsolve.sun.com/pub-cgi/findPatch.pl?patchId=106541&rev=21 Sun Solaris 8.0 _x86: Sun Patch 108529-17 http://sunsolve.sun.com/pub-cgi/findPatch.pl?patchId=108529&rev=17 Sun Solaris 8.0: Sun Patch 108528-17 http://sunsolve.sun.com/pub-cgi/findPatch.pl?patchId=108528&rev=17 Sun Solaris 9.0: Sun Patch 112233-02 http://sunsolve.sun.com/pub-cgi/findPatch.pl?patchId=112233&rev=02 相关信息 参考:http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert%2F48267 |
