CVE-1999-0908

CVSS 2.0 Score 5 of 10 (medium)

Details

Published Sep 23, 1999

Updated: Nov 20, 2024

Summary

CVE-1999-0908 is a denial-of-service vulnerability affecting the Solaris TCP streams driver. A malicious connection can cause the server to panic by inducing recursive calls to the mutex_enter function. This can result in a denial-of-service condition, making the affected system unavailable to legitimate users. The vulnerability can be exploited by an unauthenticated attacker to cause the system to crash, potentially leading to a loss of availability and productivity. Systems running Solaris with the TCP streams driver should be patched to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Sun Solaris
SunOS

Affected Vendors

Oracle Corp
Sun.

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/NWlPdi
https://www.cve.org/CVERecord?id=CVE-1999-0908
https://nvd.nist.gov/vuln/detail/CVE-1999-0908

Back to Vulnerability Database