Title: Plan 9 Local Integer Overflow Vulnerability
Severity: HIGH
Description:
Plan 9 is an operating system created by Bell Labs.
Plan 9 is prone to a local integer-overflow vulnerability because it fails to check boundaries on input to operations that move sensitive memory at the kernel level.
This issue is triggered when a parameter isn't properly bounds-checked. The value is a parameter to a memory move operation; attackers could exploit this to move malicious code into arbitrary kernel memory.
Successfully exploiting this issue allows remote attackers to corrupt the kernel memory of the Plan 9 OS. This may potentially facilitate the execution of attacker-supplied machine code at the kernel level. Failed exploit attempts will likely crash the kernel.
Affected Products:
- Bell Labs Plan 9 Fourth Edition
References:
- Bell Labs: Plan 9 web site
Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.
