Solaris 7.0 - Recursive mutex_enter Remote Panic (Denial of Service)

EDB-ID:

19507


Platform:

Solaris

Published:

1999-09-23

source: http://www.securityfocus.com/bid/655/info

A vulnerability in Solaris TCP/IP stack may allow remote users to panic the system.

If the nmap network mapping utility is used with the OS fingerprinting option ('-O') against an active listening port and the server listening on that port is then killed the system will panic because of recursive calls to mutex_enter within the TCP streams driver.

$nmap -O -p 80 targethost.com