Title: Sun Solaris Secure Digital Slot Driver (sdhost(7D)) Local Code Execution Vulnerability
Severity: HIGH
Description:
Sun Solaris Secure Digital Slot Driver (sdhost(7D)) is prone to a local code-execution vulnerability. Specifically, an attacker with access to the memory card device may corrupt portions of kernel memory or the contents of a memory card.
The attacker may be able to execute arbitrary code in the context of the kernel. Successful exploits may completely compromise the vulnerable system. The attacker may also be able to exploit this issue to hang or panic the kernel, thus causing a denial of service.
This issue affects OpenSolaris based on builds snv_105 through snv_108 on x86 platforms.
Affected Products:
- Sun OpenSolaris build snv_105
- Sun OpenSolaris build snv_106
- Sun OpenSolaris build snv_107
- Sun OpenSolaris build snv_108
References:
- Sun: 259408 A Security Vulnerability in the Solaris Secure Digital Slot Driver (sdhos
- Sun Microsystems: Sun Solaris Homepage
Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.
