Vulnerability Details : CVE-2009-4226
Race condition in the IP module in the kernel in Sun OpenSolaris snv_106 through snv_124 allows remote attackers to cause a denial of service (NULL pointer dereference and panic) via unspecified vectors related to the (1) tcp_do_getsockname or (2) tcp_do_getpeername function.
Vulnerability category: Memory CorruptionDenial of service
Products affected by CVE-2009-4226
- cpe:2.3:o:sun:opensolaris:snv_106:*:x86:*:*:*:*:*
- cpe:2.3:o:sun:opensolaris:snv_106:*:sparc:*:*:*:*:*
- cpe:2.3:o:sun:opensolaris:snv_107:*:x86:*:*:*:*:*
- cpe:2.3:o:sun:opensolaris:snv_107:*:sparc:*:*:*:*:*
- cpe:2.3:o:sun:opensolaris:snv_108:*:sparc:*:*:*:*:*
- cpe:2.3:o:sun:opensolaris:snv_109:*:sparc:*:*:*:*:*
- cpe:2.3:o:sun:opensolaris:snv_110:*:sparc:*:*:*:*:*
- cpe:2.3:o:sun:opensolaris:snv_108:*:x86:*:*:*:*:*
- cpe:2.3:o:sun:opensolaris:snv_109:*:x86:*:*:*:*:*
- cpe:2.3:o:sun:opensolaris:snv_110:*:x86:*:*:*:*:*
- cpe:2.3:o:sun:opensolaris:snv_111:*:sparc:*:*:*:*:*
- cpe:2.3:o:sun:opensolaris:snv_113:*:sparc:*:*:*:*:*
- cpe:2.3:o:sun:opensolaris:snv_112:*:sparc:*:*:*:*:*
- cpe:2.3:o:sun:opensolaris:snv_112:*:x86:*:*:*:*:*
- cpe:2.3:o:sun:opensolaris:snv_113:*:x86:*:*:*:*:*
- cpe:2.3:o:sun:opensolaris:snv_115:*:sparc:*:*:*:*:*
- cpe:2.3:o:sun:opensolaris:snv_115:*:x86:*:*:*:*:*
- cpe:2.3:o:sun:opensolaris:snv_114:*:sparc:*:*:*:*:*
- cpe:2.3:o:sun:opensolaris:snv_114:*:x86:*:*:*:*:*
- cpe:2.3:o:sun:opensolaris:snv_116:*:sparc:*:*:*:*:*
- cpe:2.3:o:sun:opensolaris:snv_116:*:x86:*:*:*:*:*
- cpe:2.3:o:sun:opensolaris:snv_111:*:x86:*:*:*:*:*
- cpe:2.3:o:sun:opensolaris:snv_117:*:sparc:*:*:*:*:*
- cpe:2.3:o:sun:opensolaris:snv_117:*:x86:*:*:*:*:*
- cpe:2.3:o:sun:opensolaris:snv_118:*:x86:*:*:*:*:*
- cpe:2.3:o:sun:opensolaris:snv_119:*:x86:*:*:*:*:*
- cpe:2.3:o:sun:opensolaris:snv_119:*:sparc:*:*:*:*:*
- cpe:2.3:o:sun:opensolaris:snv_118:*:sparc:*:*:*:*:*
- cpe:2.3:o:sun:opensolaris:snv_120:*:sparc:*:*:*:*:*
- cpe:2.3:o:sun:opensolaris:snv_120:*:x86:*:*:*:*:*
- cpe:2.3:o:sun:opensolaris:snv_121:*:sparc:*:*:*:*:*
- cpe:2.3:o:sun:opensolaris:snv_122:*:sparc:*:*:*:*:*
- cpe:2.3:o:sun:opensolaris:snv_121:*:x86:*:*:*:*:*
- cpe:2.3:o:sun:opensolaris:snv_122:*:x86:*:*:*:*:*
- cpe:2.3:o:sun:opensolaris:snv_123:*:sparc:*:*:*:*:*
- cpe:2.3:o:sun:opensolaris:snv_123:*:x86:*:*:*:*:*
- cpe:2.3:o:sun:opensolaris:snv_124:*:x86:*:*:*:*:*
- cpe:2.3:o:sun:opensolaris:snv_124:*:sparc:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2009-4226
1.04%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 84 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2009-4226
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
7.1
|
HIGH | AV:N/AC:M/Au:N/C:N/I:N/A:C |
8.6
|
6.9
|
NIST |
CWE ids for CVE-2009-4226
-
The product contains a concurrent code sequence that requires temporary, exclusive access to a shared resource, but a timing window exists in which the shared resource can be modified by another code sequence operating concurrently.Assigned by: nvd@nist.gov (Primary)
References for CVE-2009-4226
Jump to