CVE-2008-3549

Unspecified vulnerability in the pthread_mutex_reltimedlock_np API in Sun Solaris 10 and OpenSolaris before snv_90 allows local users to cause a denial of service (system hang or panic) via unknown vectors.

CVSS v2.0 4.7 MEDIUM

4.7^/10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:L/AC:M/Au:N/C:N/I:N/A:C

Exploitability : 3.4 / Impact : 6.9

Access Vector LOCAL

Access Complexity MEDIUM

Authentication NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact COMPLETE

References

Link	Resource
http://secunia.com/advisories/31348	Patch Vendor Advisory
http://sunsolve.sun.com/search/document.do?assetkey=1-66-239387-1	Patch
http://www.securityfocus.com/bid/30561	Patch
http://www.securitytracker.com/id?1020634
http://www.vupen.com/english/advisories/2008/2312
https://exchange.xforce.ibmcloud.com/vulnerabilities/44224
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5446
http://secunia.com/advisories/31348	Patch Vendor Advisory
http://sunsolve.sun.com/search/document.do?assetkey=1-66-239387-1	Patch
http://www.securityfocus.com/bid/30561	Patch
http://www.securitytracker.com/id?1020634
http://www.vupen.com/english/advisories/2008/2312
https://exchange.xforce.ibmcloud.com/vulnerabilities/44224
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5446

Configurations

Configuration 1 (hide)

OR	cpe:2.3:o:sun:opensolaris:build_snv_01::sparc:::::
	cpe:2.3:o:sun:opensolaris:build_snv_01::x86:::::
	cpe:2.3:o:sun:opensolaris:build_snv_02::sparc:::::
	cpe:2.3:o:sun:opensolaris:build_snv_02::x86:::::
	cpe:2.3:o:sun:opensolaris:build_snv_13::sparc:::::
	cpe:2.3:o:sun:opensolaris:build_snv_13::x86:::::
	cpe:2.3:o:sun:opensolaris:build_snv_19::sparc:::::
	cpe:2.3:o:sun:opensolaris:build_snv_19::x86:::::
	cpe:2.3:o:sun:opensolaris:build_snv_22::sparc:::::
	cpe:2.3:o:sun:opensolaris:build_snv_22::x86:::::
	cpe:2.3:o:sun:opensolaris:build_snv_39::sparc:::::
	cpe:2.3:o:sun:opensolaris:build_snv_39::x86:::::
	cpe:2.3:o:sun:opensolaris:build_snv_47::sparc:::::
	cpe:2.3:o:sun:opensolaris:build_snv_47::x86:::::
	cpe:2.3:o:sun:opensolaris:build_snv_64::sparc:::::
	cpe:2.3:o:sun:opensolaris:build_snv_64::x86:::::
	cpe:2.3:o:sun:opensolaris:build_snv_79b::sparc:::::
	cpe:2.3:o:sun:opensolaris:build_snv_79b::x86:::::
	cpe:2.3:o:sun:opensolaris:build_snv_88::sparc:::::
	cpe:2.3:o:sun:opensolaris:build_snv_88::x86:::::
	cpe:2.3:o:sun:opensolaris:build_snv_89::sparc:::::
	cpe:2.3:o:sun:opensolaris:build_snv_89::x86:::::
	cpe:2.3:o:sun:solaris:10::sparc:::::
	cpe:2.3:o:sun:solaris:10::x86:::::

History

21 Nov 2024, 00:49

Type	Values Removed	Values Added
References	~~() http://secunia.com/advisories/31348 - Patch, Vendor Advisory~~	() http://secunia.com/advisories/31348 - Patch, Vendor Advisory
References	~~() http://sunsolve.sun.com/search/document.do?assetkey=1-66-239387-1 - Patch~~	() http://sunsolve.sun.com/search/document.do?assetkey=1-66-239387-1 - Patch
References	~~() http://www.securityfocus.com/bid/30561 - Patch~~	() http://www.securityfocus.com/bid/30561 - Patch
References	~~() http://www.securitytracker.com/id?1020634 -~~	() http://www.securitytracker.com/id?1020634 -
References	~~() http://www.vupen.com/english/advisories/2008/2312 -~~	() http://www.vupen.com/english/advisories/2008/2312 -
References	~~() https://exchange.xforce.ibmcloud.com/vulnerabilities/44224 -~~	() https://exchange.xforce.ibmcloud.com/vulnerabilities/44224 -
References	~~() https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5446 -~~	() https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5446 -

Information

Published : 2008-08-07 21:41

Updated : 2025-04-09 00:30

NVD link : CVE-2008-3549

Mitre link : CVE-2008-3549

CVE.ORG link : CVE-2008-3549

JSON object : View

Products Affected

sun

solaris
opensolaris

CWE

CWE-399

Resource Management Errors

NVD-CWE-noinfo

{"id": "CVE-2008-3549", "cveTags": [], "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 4.7, "accessVector": "LOCAL", "vectorString": "AV:L/AC:M/Au:N/C:N/I:N/A:C", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "MEDIUM", "availabilityImpact": "COMPLETE", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 6.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 3.4, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2008-08-07T21:41:00.000", "references": [{"url": "http://secunia.com/advisories/31348", "tags": ["Patch", "Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://sunsolve.sun.com/search/document.do?assetkey=1-66-239387-1", "tags": ["Patch"], "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/bid/30561", "tags": ["Patch"], "source": "cve@mitre.org"}, {"url": "http://www.securitytracker.com/id?1020634", "source": "cve@mitre.org"}, {"url": "http://www.vupen.com/english/advisories/2008/2312", "source": "cve@mitre.org"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/44224", "source": "cve@mitre.org"}, {"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5446", "source": "cve@mitre.org"}, {"url": "http://secunia.com/advisories/31348", "tags": ["Patch", "Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://sunsolve.sun.com/search/document.do?assetkey=1-66-239387-1", "tags": ["Patch"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securityfocus.com/bid/30561", "tags": ["Patch"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securitytracker.com/id?1020634", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.vupen.com/english/advisories/2008/2312", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/44224", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5446", "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Deferred", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-399"}, {"lang": "en", "value": "NVD-CWE-noinfo"}]}], "descriptions": [{"lang": "en", "value": "Unspecified vulnerability in the pthread_mutex_reltimedlock_np API in Sun Solaris 10 and OpenSolaris before snv_90 allows local users to cause a denial of service (system hang or panic) via unknown vectors."}, {"lang": "es", "value": "Vulnerabilidad no especificada en la API pthread_mutex_reltimedlock_np de Sun Solaris 10 y OpenSolaris versiones anteriores a la snv_90, permite a usuarios locales provocar una denegaci\u00f3n de servicio (cuelgue del sistema o panic) a trav\u00e9s de vectores desconocidos."}], "lastModified": "2025-04-09T00:30:58.490", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:sun:opensolaris:build_snv_01:*:sparc:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EFDB74EA-C4E0-47E2-A22A-ED2D763ED644"}, {"criteria": "cpe:2.3:o:sun:opensolaris:build_snv_01:*:x86:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "98445126-C244-4031-A9BC-E5A75AF8FE6A"}, {"criteria": "cpe:2.3:o:sun:opensolaris:build_snv_02:*:sparc:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "32AE6527-AF60-4C00-9F75-11F550CEEE9C"}, {"criteria": "cpe:2.3:o:sun:opensolaris:build_snv_02:*:x86:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E669599A-7D4F-4F49-A359-A158D81F56F9"}, {"criteria": "cpe:2.3:o:sun:opensolaris:build_snv_13:*:sparc:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "ACA190A7-7633-4285-B0F9-A7FF91C7C02B"}, {"criteria": "cpe:2.3:o:sun:opensolaris:build_snv_13:*:x86:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "90DF6C89-265E-4281-8557-FE1DFAF4890C"}, {"criteria": "cpe:2.3:o:sun:opensolaris:build_snv_19:*:sparc:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "70B28D10-69C4-4E8F-9772-EEF8BF2677CD"}, {"criteria": "cpe:2.3:o:sun:opensolaris:build_snv_19:*:x86:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D77A8D1C-89B8-4926-8F1E-676315C42EAF"}, {"criteria": "cpe:2.3:o:sun:opensolaris:build_snv_22:*:sparc:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0268A9F2-F387-4894-9373-CBC39F38439F"}, {"criteria": "cpe:2.3:o:sun:opensolaris:build_snv_22:*:x86:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DB045976-32B5-466F-A74F-51A1E9CB074C"}, {"criteria": "cpe:2.3:o:sun:opensolaris:build_snv_39:*:sparc:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D31BF463-18B0-4C7D-9318-0853B57200F9"}, {"criteria": "cpe:2.3:o:sun:opensolaris:build_snv_39:*:x86:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2DFA1F8F-6718-4E66-A70A-2B4B46F41A07"}, {"criteria": "cpe:2.3:o:sun:opensolaris:build_snv_47:*:sparc:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6E316AEF-AA3B-4A3E-AC24-0E49C6A2C5C6"}, {"criteria": "cpe:2.3:o:sun:opensolaris:build_snv_47:*:x86:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FD3142C5-7F3F-4F2E-BBC7-9E37E6B84A58"}, {"criteria": "cpe:2.3:o:sun:opensolaris:build_snv_64:*:sparc:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "37F4D1F9-E7CE-4186-A435-19077D88D6F4"}, {"criteria": "cpe:2.3:o:sun:opensolaris:build_snv_64:*:x86:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7A0927CE-4B92-458B-977D-ED45FB00EC73"}, {"criteria": "cpe:2.3:o:sun:opensolaris:build_snv_79b:*:sparc:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "561DFA15-7A7D-4200-9C5D-F6B62278FBA1"}, {"criteria": "cpe:2.3:o:sun:opensolaris:build_snv_79b:*:x86:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CCD40731-5049-4317-97AA-339A7086E257"}, {"criteria": "cpe:2.3:o:sun:opensolaris:build_snv_88:*:sparc:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "07F9A55B-10F1-4ED1-B336-C0B4AE280405"}, {"criteria": "cpe:2.3:o:sun:opensolaris:build_snv_88:*:x86:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2AE1AB01-1B7A-4443-90D7-B688E857B1C9"}, {"criteria": "cpe:2.3:o:sun:opensolaris:build_snv_89:*:sparc:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4230884B-C46E-4720-9A53-702F46D5D7E7"}, {"criteria": "cpe:2.3:o:sun:opensolaris:build_snv_89:*:x86:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A4A18AF8-15B7-442F-B7AA-0CF6EAD8242E"}, {"criteria": "cpe:2.3:o:sun:solaris:10:*:sparc:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7FBA68F0-4577-46F5-A754-D365B6EFF872"}, {"criteria": "cpe:2.3:o:sun:solaris:10:*:x86:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E79CFAA6-A08A-4C70-A3D9-B02C29A17FF2"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}

4.7 /10