CVE-2009-4075 - Vulnerability Details

Vendors	Products
Sun	Opensolaris Solaris

Link	Providers
http://osvdb.org/60498
http://sunsolve.sun.com/search/document.do?assetkey=1-21-143140-01-1
http://sunsolve.sun.com/search/document.do?assetkey=1-66-272629-1
http://www.securityfocus.com/bid/37116
http://www.vupen.com/english/advisories/2009/3333
https://exchange.xforce.ibmcloud.com/vulnerabilities/54401

Show plain JSON

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2009-11-23T00:00:00", "descriptions": [{"lang": "en", "value": "Unspecified vulnerability in the timeout mechanism in sshd in Sun Solaris 10, and OpenSolaris snv_99 through snv_123, allows remote attackers to cause a denial of service (daemon outage) via unknown vectors that trigger a \"dangling sshd authentication thread.\""}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-08-16T14:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "ADV-2009-3333", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2009/3333"}, {"name": "60498", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://osvdb.org/60498"}, {"name": "272629", "tags": ["vendor-advisory", "x_refsource_SUNALERT"], "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-66-272629-1"}, {"name": "solaris-sshd1m-dos(54401)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/54401"}, {"name": "37116", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/37116"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-21-143140-01-1"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2009-4075", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Unspecified vulnerability in the timeout mechanism in sshd in Sun Solaris 10, and OpenSolaris snv_99 through snv_123, allows remote attackers to cause a denial of service (daemon outage) via unknown vectors that trigger a \"dangling sshd authentication thread.\""}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "ADV-2009-3333", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2009/3333"}, {"name": "60498", "refsource": "OSVDB", "url": "http://osvdb.org/60498"}, {"name": "272629", "refsource": "SUNALERT", "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-66-272629-1"}, {"name": "solaris-sshd1m-dos(54401)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/54401"}, {"name": "37116", "refsource": "BID", "url": "http://www.securityfocus.com/bid/37116"}, {"name": "http://sunsolve.sun.com/search/document.do?assetkey=1-21-143140-01-1", "refsource": "CONFIRM", "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-21-143140-01-1"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-07T06:54:08.674Z"}, "title": "CVE Program Container", "references": [{"name": "ADV-2009-3333", "tags": ["vdb-entry", "x_refsource_VUPEN", "x_transferred"], "url": "http://www.vupen.com/english/advisories/2009/3333"}, {"name": "60498", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://osvdb.org/60498"}, {"name": "272629", "tags": ["vendor-advisory", "x_refsource_SUNALERT", "x_transferred"], "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-66-272629-1"}, {"name": "solaris-sshd1m-dos(54401)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/54401"}, {"name": "37116", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/37116"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-21-143140-01-1"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2009-4075", "datePublished": "2009-11-25T18:00:00", "dateReserved": "2009-11-25T00:00:00", "dateUpdated": "2024-08-07T06:54:08.674Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{

containers : { »

cna : { »

affected : [ »

0 : { »

product : n/a (string)

vendor : n/a (string)

versions : [ »

0 : { »

status : affected (string)

version : n/a (string)

}

]

}

]

datePublic : 2009-11-23T00:00:00 (string)

descriptions : [ »

0 : { »

lang : en (string)

value : Unspecified vulnerability in the timeout mechanism in sshd in Sun Solaris 10, and OpenSolaris snv_99 through snv_123, allows remote attackers to cause a denial of service (daemon outage) via unknown vectors that trigger a "dangling sshd authentication thread." (string)

}

]

problemTypes : [ »

0 : { »

descriptions : [ »

0 : { »

description : n/a (string)

lang : en (string)

type : text (string)

}

]

}

]

providerMetadata : { »

dateUpdated : 2017-08-16T14:57:01 (string)

orgId : 8254265b-2729-46b6-b9e3-3dfca2d5bfca (string)

shortName : mitre (string)

}

references : [ »

0 : { »

name : ADV-2009-3333 (string)

tags : [ »

0 : vdb-entry (string)

1 : x_refsource_VUPEN (string)

]

url : http://www.vupen.com/english/advisories/2009/3333 (string)

}

1 : { »

name : 60498 (string)

tags : [ »

0 : vdb-entry (string)

1 : x_refsource_OSVDB (string)

]

url : http://osvdb.org/60498 (string)

}

2 : { »

name : 272629 (string)

tags : [ »

0 : vendor-advisory (string)

1 : x_refsource_SUNALERT (string)

]

url : http://sunsolve.sun.com/search/document.do?assetkey=1-66-272629-1 (string)

}

3 : { »

name : solaris-sshd1m-dos(54401) (string)

tags : [ »

0 : vdb-entry (string)

1 : x_refsource_XF (string)

]

url : https://exchange.xforce.ibmcloud.com/vulnerabilities/54401 (string)

}

4 : { »

name : 37116 (string)

tags : [ »

0 : vdb-entry (string)

1 : x_refsource_BID (string)

]

url : http://www.securityfocus.com/bid/37116 (string)

}

5 : { »

tags : [ »

0 : x_refsource_CONFIRM (string)

]

url : http://sunsolve.sun.com/search/document.do?assetkey=1-21-143140-01-1 (string)

}

]

x_legacyV4Record : { »

CVE_data_meta : { »

ASSIGNER : cve@mitre.org (string)

ID : CVE-2009-4075 (string)

STATE : PUBLIC (string)

}

affects : { »

vendor : { »

vendor_data : [ »

0 : { »

product : { »

product_data : [ »

0 : { »

product_name : n/a (string)

version : { »

version_data : [ »

0 : { »

version_value : n/a (string)

}

]

}

]

}

vendor_name : n/a (string)

}

]

}

data_format : MITRE (string)

data_type : CVE (string)

data_version : 4.0 (string)

description : { »

description_data : [ »

0 : { »

lang : eng (string)

value : Unspecified vulnerability in the timeout mechanism in sshd in Sun Solaris 10, and OpenSolaris snv_99 through snv_123, allows remote attackers to cause a denial of service (daemon outage) via unknown vectors that trigger a "dangling sshd authentication thread." (string)

}

]

}

problemtype : { »

problemtype_data : [ »

0 : { »

description : [ »

0 : { »

lang : eng (string)

value : n/a (string)

}

]

}

]

}

references : { »

reference_data : [ »

0 : { »

name : ADV-2009-3333 (string)

refsource : VUPEN (string)

url : http://www.vupen.com/english/advisories/2009/3333 (string)

}

1 : { »

name : 60498 (string)

refsource : OSVDB (string)

url : http://osvdb.org/60498 (string)

}

2 : { »

name : 272629 (string)

refsource : SUNALERT (string)

url : http://sunsolve.sun.com/search/document.do?assetkey=1-66-272629-1 (string)

}

3 : { »

name : solaris-sshd1m-dos(54401) (string)

refsource : XF (string)

url : https://exchange.xforce.ibmcloud.com/vulnerabilities/54401 (string)

}

4 : { »

name : 37116 (string)

refsource : BID (string)

url : http://www.securityfocus.com/bid/37116 (string)

}

5 : { »

name : http://sunsolve.sun.com/search/document.do?assetkey=1-21-143140-01-1 (string)

refsource : CONFIRM (string)

url : http://sunsolve.sun.com/search/document.do?assetkey=1-21-143140-01-1 (string)

}

]

}

adp : [ »

0 : { »

providerMetadata : { »

orgId : af854a3a-2127-422b-91ae-364da2661108 (string)

shortName : CVE (string)

dateUpdated : 2024-08-07T06:54:08.674Z (string)

}

title : CVE Program Container (string)

references : [ »

0 : { »

name : ADV-2009-3333 (string)

tags : [ »

0 : vdb-entry (string)

1 : x_refsource_VUPEN (string)

2 : x_transferred (string)

]

url : http://www.vupen.com/english/advisories/2009/3333 (string)

}

1 : { »

name : 60498 (string)

tags : [ »

0 : vdb-entry (string)

1 : x_refsource_OSVDB (string)

2 : x_transferred (string)

]

url : http://osvdb.org/60498 (string)

}

2 : { »

name : 272629 (string)

tags : [ »

0 : vendor-advisory (string)

1 : x_refsource_SUNALERT (string)

2 : x_transferred (string)

]

url : http://sunsolve.sun.com/search/document.do?assetkey=1-66-272629-1 (string)

}

3 : { »

name : solaris-sshd1m-dos(54401) (string)

tags : [ »

0 : vdb-entry (string)

1 : x_refsource_XF (string)

2 : x_transferred (string)

]

url : https://exchange.xforce.ibmcloud.com/vulnerabilities/54401 (string)

}

4 : { »

name : 37116 (string)

tags : [ »

0 : vdb-entry (string)

1 : x_refsource_BID (string)

2 : x_transferred (string)

]

url : http://www.securityfocus.com/bid/37116 (string)

}

5 : { »

tags : [ »

0 : x_refsource_CONFIRM (string)

1 : x_transferred (string)

]

url : http://sunsolve.sun.com/search/document.do?assetkey=1-21-143140-01-1 (string)

}

]

}

]

}

cveMetadata : { »

assignerOrgId : 8254265b-2729-46b6-b9e3-3dfca2d5bfca (string)

assignerShortName : mitre (string)

cveId : CVE-2009-4075 (string)

datePublished : 2009-11-25T18:00:00 (string)

dateReserved : 2009-11-25T00:00:00 (string)

dateUpdated : 2024-08-07T06:54:08.674Z (string)

state : PUBLISHED (string)

}

dataType : CVE_RECORD (string)

dataVersion : 5.1 (string)

}

Show plain JSON

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:sun:opensolaris:snv_99:*:sparc:*:*:*:*:*", "matchCriteriaId": "04D12F3A-4C47-4B49-B3DE-484C1EE466E0", "vulnerable": true}, {"criteria": "cpe:2.3:o:sun:opensolaris:snv_99:*:x86:*:*:*:*:*", "matchCriteriaId": "3D028821-CA38-48C4-9324-222526AC8413", "vulnerable": true}, {"criteria": "cpe:2.3:o:sun:opensolaris:snv_100:*:sparc:*:*:*:*:*", "matchCriteriaId": "5BE8232A-2464-449A-A7B6-D44447AA9080", "vulnerable": true}, {"criteria": "cpe:2.3:o:sun:opensolaris:snv_100:*:x86:*:*:*:*:*", "matchCriteriaId": "1F2CB558-9390-4AAE-A66D-E3DA537E3115", "vulnerable": true}, {"criteria": "cpe:2.3:o:sun:opensolaris:snv_101:*:sparc:*:*:*:*:*", "matchCriteriaId": "37D9D7A5-63F5-49F6-90EE-EBE5B3FA6DBA", "vulnerable": true}, {"criteria": "cpe:2.3:o:sun:opensolaris:snv_101:*:x86:*:*:*:*:*", "matchCriteriaId": "5ED4FAD0-E91F-438D-A3CB-BACFB7F7E975", "vulnerable": true}, {"criteria": "cpe:2.3:o:sun:opensolaris:snv_102:*:sparc:*:*:*:*:*", "matchCriteriaId": "6061C499-21A8-4EC4-B5AD-F6E876B15C48", "vulnerable": true}, {"criteria": "cpe:2.3:o:sun:opensolaris:snv_102:*:x86:*:*:*:*:*", "matchCriteriaId": "411B33D1-F55D-42C0-9046-040ABC42E31B", "vulnerable": true}, {"criteria": "cpe:2.3:o:sun:opensolaris:snv_103:*:sparc:*:*:*:*:*", "matchCriteriaId": "677C89EB-1575-46B6-A07C-C8BAA829F620", "vulnerable": true}, {"criteria": "cpe:2.3:o:sun:opensolaris:snv_103:*:x86:*:*:*:*:*", "matchCriteriaId": "0491828F-8BB7-4463-AEE7-BFA0C574B6A6", "vulnerable": true}, {"criteria": "cpe:2.3:o:sun:opensolaris:snv_104:*:sparc:*:*:*:*:*", "matchCriteriaId": "59679597-3883-4D20-A6E6-0C1CB0BAB3E6", "vulnerable": true}, {"criteria": "cpe:2.3:o:sun:opensolaris:snv_104:*:x86:*:*:*:*:*", "matchCriteriaId": "CE4D5683-259F-449E-B1C7-2BD81CC4805F", "vulnerable": true}, {"criteria": "cpe:2.3:o:sun:opensolaris:snv_105:*:sparc:*:*:*:*:*", "matchCriteriaId": "98368E28-F8A9-40E3-ADB4-BF9F9F20F76D", "vulnerable": true}, {"criteria": "cpe:2.3:o:sun:opensolaris:snv_105:*:x86:*:*:*:*:*", "matchCriteriaId": "42B7F288-2D35-4988-97B0-C529485033C3", "vulnerable": true}, {"criteria": "cpe:2.3:o:sun:opensolaris:snv_106:*:sparc:*:*:*:*:*", "matchCriteriaId": "A799B071-D0A6-47C4-80DF-75AB9ADD2916", "vulnerable": true}, {"criteria": "cpe:2.3:o:sun:opensolaris:snv_106:*:x86:*:*:*:*:*", "matchCriteriaId": "F276AFE2-B501-4355-9716-9D1A75AD09CC", "vulnerable": true}, {"criteria": "cpe:2.3:o:sun:opensolaris:snv_107:*:sparc:*:*:*:*:*", "matchCriteriaId": "58A9EC84-8FD4-455F-95DE-FBFD67A1441E", "vulnerable": true}, {"criteria": "cpe:2.3:o:sun:opensolaris:snv_107:*:x86:*:*:*:*:*", "matchCriteriaId": "8ADE7EBB-8014-459F-A189-9D902BEE1FD1", "vulnerable": true}, {"criteria": "cpe:2.3:o:sun:opensolaris:snv_108:*:sparc:*:*:*:*:*", "matchCriteriaId": "BB9190F5-DF79-4EFC-B8B8-5B373BCDD1F0", "vulnerable": true}, {"criteria": "cpe:2.3:o:sun:opensolaris:snv_108:*:x86:*:*:*:*:*", "matchCriteriaId": "FF3DEB74-D65C-427A-8907-6044238E8C03", "vulnerable": true}, {"criteria": "cpe:2.3:o:sun:opensolaris:snv_109:*:sparc:*:*:*:*:*", "matchCriteriaId": "264D137D-0B78-4F47-AA9F-427D535A1AE7", "vulnerable": true}, {"criteria": "cpe:2.3:o:sun:opensolaris:snv_109:*:x86:*:*:*:*:*", "matchCriteriaId": "A7A2D975-A03A-494A-8CFE-2D8932906C14", "vulnerable": true}, {"criteria": "cpe:2.3:o:sun:opensolaris:snv_110:*:sparc:*:*:*:*:*", "matchCriteriaId": "7D970B1B-44C6-443B-9029-D7182782BD1F", "vulnerable": true}, {"criteria": "cpe:2.3:o:sun:opensolaris:snv_110:*:x86:*:*:*:*:*", "matchCriteriaId": "5B3DB52A-595F-4A50-98D5-DF308471B823", "vulnerable": true}, {"criteria": "cpe:2.3:o:sun:opensolaris:snv_111:*:sparc:*:*:*:*:*", "matchCriteriaId": "A4CA00AD-837E-4E3E-AE7E-A49CC3AF44A0", "vulnerable": true}, {"criteria": "cpe:2.3:o:sun:opensolaris:snv_111:*:x86:*:*:*:*:*", "matchCriteriaId": "B3BBCE23-9F15-45CD-859F-77ED540B51F3", "vulnerable": true}, {"criteria": "cpe:2.3:o:sun:opensolaris:snv_112:*:sparc:*:*:*:*:*", "matchCriteriaId": "698744C6-2A65-478B-A846-099E6C86D0B4", "vulnerable": true}, {"criteria": "cpe:2.3:o:sun:opensolaris:snv_112:*:x86:*:*:*:*:*", "matchCriteriaId": "053A0DA6-483C-49BB-BC7A-E624DB2C269E", "vulnerable": true}, {"criteria": "cpe:2.3:o:sun:opensolaris:snv_113:*:sparc:*:*:*:*:*", "matchCriteriaId": "EEF667A1-1AE1-42D4-8DB4-CE414CEA3E8B", "vulnerable": true}, {"criteria": "cpe:2.3:o:sun:opensolaris:snv_113:*:x86:*:*:*:*:*", "matchCriteriaId": "447212A4-FACD-475E-A62B-60FE6504F63E", "vulnerable": true}, {"criteria": "cpe:2.3:o:sun:opensolaris:snv_114:*:sparc:*:*:*:*:*", "matchCriteriaId": "EE9DD764-8B9F-4922-BFAD-3FCC56CF9705", "vulnerable": true}, {"criteria": "cpe:2.3:o:sun:opensolaris:snv_114:*:x86:*:*:*:*:*", "matchCriteriaId": "AB694DC0-407A-4555-8B72-DAF3C169DCE5", "vulnerable": true}, {"criteria": "cpe:2.3:o:sun:opensolaris:snv_115:*:sparc:*:*:*:*:*", "matchCriteriaId": "78B80C92-7EB5-4343-B830-32E8C011E572", "vulnerable": true}, {"criteria": "cpe:2.3:o:sun:opensolaris:snv_115:*:x86:*:*:*:*:*", "matchCriteriaId": "535FF689-13A2-40C6-8706-7782038FDBD3", "vulnerable": true}, {"criteria": "cpe:2.3:o:sun:opensolaris:snv_116:*:sparc:*:*:*:*:*", "matchCriteriaId": "46E4ED9C-F013-48D2-8642-E5BA7599A512", "vulnerable": true}, {"criteria": "cpe:2.3:o:sun:opensolaris:snv_116:*:x86:*:*:*:*:*", "matchCriteriaId": "843246D3-C2DA-454D-916A-AC8905E5134E", "vulnerable": true}, {"criteria": "cpe:2.3:o:sun:opensolaris:snv_117:*:sparc:*:*:*:*:*", "matchCriteriaId": "A1E8108D-3CE7-4041-9027-1CA7473389EB", "vulnerable": true}, {"criteria": "cpe:2.3:o:sun:opensolaris:snv_117:*:x86:*:*:*:*:*", "matchCriteriaId": "244B7FE4-C485-4993-9810-3433C83A120E", "vulnerable": true}, {"criteria": "cpe:2.3:o:sun:opensolaris:snv_118:*:sparc:*:*:*:*:*", "matchCriteriaId": "33E95F0E-D3D5-47CB-B503-7B7F92FB3F15", "vulnerable": true}, {"criteria": "cpe:2.3:o:sun:opensolaris:snv_118:*:x86:*:*:*:*:*", "matchCriteriaId": "BE586AB9-9D46-4BC2-8092-51482F297410", "vulnerable": true}, {"criteria": "cpe:2.3:o:sun:opensolaris:snv_119:*:sparc:*:*:*:*:*", "matchCriteriaId": "E8585133-1F25-494A-8859-87B1D93305A7", "vulnerable": true}, {"criteria": "cpe:2.3:o:sun:opensolaris:snv_119:*:x86:*:*:*:*:*", "matchCriteriaId": "3A5C836E-51A5-4B1C-AB03-A4DFDA440BD1", "vulnerable": true}, {"criteria": "cpe:2.3:o:sun:opensolaris:snv_120:*:sparc:*:*:*:*:*", "matchCriteriaId": "F61CD721-197F-4BB3-9D59-CB3C16D6B1B1", "vulnerable": true}, {"criteria": "cpe:2.3:o:sun:opensolaris:snv_120:*:x86:*:*:*:*:*", "matchCriteriaId": "A1D4C98B-0D01-461C-93C2-0AF9DA6519A1", "vulnerable": true}, {"criteria": "cpe:2.3:o:sun:opensolaris:snv_121:*:sparc:*:*:*:*:*", "matchCriteriaId": "3D01EACB-9DB4-4940-A1F2-40474B24AEFD", "vulnerable": true}, {"criteria": "cpe:2.3:o:sun:opensolaris:snv_121:*:x86:*:*:*:*:*", "matchCriteriaId": "A0CE1A06-2588-47AA-81F8-E3655F915C33", "vulnerable": true}, {"criteria": "cpe:2.3:o:sun:opensolaris:snv_122:*:sparc:*:*:*:*:*", "matchCriteriaId": "D1BBB436-9F7A-4E2D-908B-D57A531B1B3C", "vulnerable": true}, {"criteria": "cpe:2.3:o:sun:opensolaris:snv_122:*:x86:*:*:*:*:*", "matchCriteriaId": "5972E930-76E2-40FD-8E7F-74E012D34E39", "vulnerable": true}, {"criteria": "cpe:2.3:o:sun:opensolaris:snv_123:*:sparc:*:*:*:*:*", "matchCriteriaId": "45B5E359-6FF2-4029-AB6A-3C906DE6AF1B", "vulnerable": true}, {"criteria": "cpe:2.3:o:sun:opensolaris:snv_123:*:x86:*:*:*:*:*", "matchCriteriaId": "A5991C3F-29F6-462F-A34E-2446E357A220", "vulnerable": true}, {"criteria": "cpe:2.3:o:sun:solaris:10:*:sparc:*:*:*:*:*", "matchCriteriaId": "7FBA68F0-4577-46F5-A754-D365B6EFF872", "vulnerable": true}, {"criteria": "cpe:2.3:o:sun:solaris:10:*:x86:*:*:*:*:*", "matchCriteriaId": "E79CFAA6-A08A-4C70-A3D9-B02C29A17FF2", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "Unspecified vulnerability in the timeout mechanism in sshd in Sun Solaris 10, and OpenSolaris snv_99 through snv_123, allows remote attackers to cause a denial of service (daemon outage) via unknown vectors that trigger a \"dangling sshd authentication thread.\""}, {"lang": "es", "value": "Vulnerabilidad inespec\u00edfica en el mecanismo de tiempo limite en sshd en Sun Solaris v10, y OpenSolaris desde snv_99 hasta snv_123, permite a atacantes remotos producir una denegaci\u00f3n de servicio (agotamiento de demonio) a trav\u00e9s de vectores desconocidos que inician un \"hilo de proceso de autenticaci\u00f3n oscilante\"."}], "id": "CVE-2009-4075", "lastModified": "2024-11-21T01:08:52.437", "metrics": {"cvssMetricV2": [{"acInsufInfo": true, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2009-11-25T18:30:00.280", "references": [{"source": "cve@mitre.org", "url": "http://osvdb.org/60498"}, {"source": "cve@mitre.org", "tags": ["Patch"], "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-21-143140-01-1"}, {"source": "cve@mitre.org", "tags": ["Patch", "Vendor Advisory"], "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-66-272629-1"}, {"source": "cve@mitre.org", "tags": ["Patch"], "url": "http://www.securityfocus.com/bid/37116"}, {"source": "cve@mitre.org", "url": "http://www.vupen.com/english/advisories/2009/3333"}, {"source": "cve@mitre.org", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/54401"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://osvdb.org/60498"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch"], "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-21-143140-01-1"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch", "Vendor Advisory"], "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-66-272629-1"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch"], "url": "http://www.securityfocus.com/bid/37116"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.vupen.com/english/advisories/2009/3333"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/54401"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-noinfo"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{

configurations : [ »

0 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:o:sun:opensolaris:snv_99:*:sparc:*:*:*:*:* (string)

matchCriteriaId : 04D12F3A-4C47-4B49-B3DE-484C1EE466E0 (string)

vulnerable : true (boolean)

}

1 : { »

criteria : cpe:2.3:o:sun:opensolaris:snv_99:*:x86:*:*:*:*:* (string)

matchCriteriaId : 3D028821-CA38-48C4-9324-222526AC8413 (string)

vulnerable : true (boolean)

}

2 : { »

criteria : cpe:2.3:o:sun:opensolaris:snv_100:*:sparc:*:*:*:*:* (string)

matchCriteriaId : 5BE8232A-2464-449A-A7B6-D44447AA9080 (string)

vulnerable : true (boolean)

}

3 : { »

criteria : cpe:2.3:o:sun:opensolaris:snv_100:*:x86:*:*:*:*:* (string)

matchCriteriaId : 1F2CB558-9390-4AAE-A66D-E3DA537E3115 (string)

vulnerable : true (boolean)

}

4 : { »

criteria : cpe:2.3:o:sun:opensolaris:snv_101:*:sparc:*:*:*:*:* (string)

matchCriteriaId : 37D9D7A5-63F5-49F6-90EE-EBE5B3FA6DBA (string)

vulnerable : true (boolean)

}

5 : { »

criteria : cpe:2.3:o:sun:opensolaris:snv_101:*:x86:*:*:*:*:* (string)

matchCriteriaId : 5ED4FAD0-E91F-438D-A3CB-BACFB7F7E975 (string)

vulnerable : true (boolean)

}

6 : { »

criteria : cpe:2.3:o:sun:opensolaris:snv_102:*:sparc:*:*:*:*:* (string)

matchCriteriaId : 6061C499-21A8-4EC4-B5AD-F6E876B15C48 (string)

vulnerable : true (boolean)

}

7 : { »

criteria : cpe:2.3:o:sun:opensolaris:snv_102:*:x86:*:*:*:*:* (string)

matchCriteriaId : 411B33D1-F55D-42C0-9046-040ABC42E31B (string)

vulnerable : true (boolean)

}

8 : { »

criteria : cpe:2.3:o:sun:opensolaris:snv_103:*:sparc:*:*:*:*:* (string)

matchCriteriaId : 677C89EB-1575-46B6-A07C-C8BAA829F620 (string)

vulnerable : true (boolean)

}

9 : { »

criteria : cpe:2.3:o:sun:opensolaris:snv_103:*:x86:*:*:*:*:* (string)

matchCriteriaId : 0491828F-8BB7-4463-AEE7-BFA0C574B6A6 (string)

vulnerable : true (boolean)

}

10 : { »

criteria : cpe:2.3:o:sun:opensolaris:snv_104:*:sparc:*:*:*:*:* (string)

matchCriteriaId : 59679597-3883-4D20-A6E6-0C1CB0BAB3E6 (string)

vulnerable : true (boolean)

}

11 : { »

criteria : cpe:2.3:o:sun:opensolaris:snv_104:*:x86:*:*:*:*:* (string)

matchCriteriaId : CE4D5683-259F-449E-B1C7-2BD81CC4805F (string)

vulnerable : true (boolean)

}

12 : { »

criteria : cpe:2.3:o:sun:opensolaris:snv_105:*:sparc:*:*:*:*:* (string)

matchCriteriaId : 98368E28-F8A9-40E3-ADB4-BF9F9F20F76D (string)

vulnerable : true (boolean)

}

13 : { »

criteria : cpe:2.3:o:sun:opensolaris:snv_105:*:x86:*:*:*:*:* (string)

matchCriteriaId : 42B7F288-2D35-4988-97B0-C529485033C3 (string)

vulnerable : true (boolean)

}

14 : { »

criteria : cpe:2.3:o:sun:opensolaris:snv_106:*:sparc:*:*:*:*:* (string)

matchCriteriaId : A799B071-D0A6-47C4-80DF-75AB9ADD2916 (string)

vulnerable : true (boolean)

}

15 : { »

criteria : cpe:2.3:o:sun:opensolaris:snv_106:*:x86:*:*:*:*:* (string)

matchCriteriaId : F276AFE2-B501-4355-9716-9D1A75AD09CC (string)

vulnerable : true (boolean)

}

16 : { »

criteria : cpe:2.3:o:sun:opensolaris:snv_107:*:sparc:*:*:*:*:* (string)

matchCriteriaId : 58A9EC84-8FD4-455F-95DE-FBFD67A1441E (string)

vulnerable : true (boolean)

}

17 : { »

criteria : cpe:2.3:o:sun:opensolaris:snv_107:*:x86:*:*:*:*:* (string)

matchCriteriaId : 8ADE7EBB-8014-459F-A189-9D902BEE1FD1 (string)

vulnerable : true (boolean)

}

18 : { »

criteria : cpe:2.3:o:sun:opensolaris:snv_108:*:sparc:*:*:*:*:* (string)

matchCriteriaId : BB9190F5-DF79-4EFC-B8B8-5B373BCDD1F0 (string)

vulnerable : true (boolean)

}

19 : { »

criteria : cpe:2.3:o:sun:opensolaris:snv_108:*:x86:*:*:*:*:* (string)

matchCriteriaId : FF3DEB74-D65C-427A-8907-6044238E8C03 (string)

vulnerable : true (boolean)

}

20 : { »

criteria : cpe:2.3:o:sun:opensolaris:snv_109:*:sparc:*:*:*:*:* (string)

matchCriteriaId : 264D137D-0B78-4F47-AA9F-427D535A1AE7 (string)

vulnerable : true (boolean)

}

21 : { »

criteria : cpe:2.3:o:sun:opensolaris:snv_109:*:x86:*:*:*:*:* (string)

matchCriteriaId : A7A2D975-A03A-494A-8CFE-2D8932906C14 (string)

vulnerable : true (boolean)

}

22 : { »

criteria : cpe:2.3:o:sun:opensolaris:snv_110:*:sparc:*:*:*:*:* (string)

matchCriteriaId : 7D970B1B-44C6-443B-9029-D7182782BD1F (string)

vulnerable : true (boolean)

}

23 : { »

criteria : cpe:2.3:o:sun:opensolaris:snv_110:*:x86:*:*:*:*:* (string)

matchCriteriaId : 5B3DB52A-595F-4A50-98D5-DF308471B823 (string)

vulnerable : true (boolean)

}

24 : { »

criteria : cpe:2.3:o:sun:opensolaris:snv_111:*:sparc:*:*:*:*:* (string)

matchCriteriaId : A4CA00AD-837E-4E3E-AE7E-A49CC3AF44A0 (string)

vulnerable : true (boolean)

}

25 : { »

criteria : cpe:2.3:o:sun:opensolaris:snv_111:*:x86:*:*:*:*:* (string)

matchCriteriaId : B3BBCE23-9F15-45CD-859F-77ED540B51F3 (string)

vulnerable : true (boolean)

}

26 : { »

criteria : cpe:2.3:o:sun:opensolaris:snv_112:*:sparc:*:*:*:*:* (string)

matchCriteriaId : 698744C6-2A65-478B-A846-099E6C86D0B4 (string)

vulnerable : true (boolean)

}

27 : { »

criteria : cpe:2.3:o:sun:opensolaris:snv_112:*:x86:*:*:*:*:* (string)

matchCriteriaId : 053A0DA6-483C-49BB-BC7A-E624DB2C269E (string)

vulnerable : true (boolean)

}

28 : { »

criteria : cpe:2.3:o:sun:opensolaris:snv_113:*:sparc:*:*:*:*:* (string)

matchCriteriaId : EEF667A1-1AE1-42D4-8DB4-CE414CEA3E8B (string)

vulnerable : true (boolean)

}

29 : { »

criteria : cpe:2.3:o:sun:opensolaris:snv_113:*:x86:*:*:*:*:* (string)

matchCriteriaId : 447212A4-FACD-475E-A62B-60FE6504F63E (string)

vulnerable : true (boolean)

}

30 : { »

criteria : cpe:2.3:o:sun:opensolaris:snv_114:*:sparc:*:*:*:*:* (string)

matchCriteriaId : EE9DD764-8B9F-4922-BFAD-3FCC56CF9705 (string)

vulnerable : true (boolean)

}

31 : { »

criteria : cpe:2.3:o:sun:opensolaris:snv_114:*:x86:*:*:*:*:* (string)

matchCriteriaId : AB694DC0-407A-4555-8B72-DAF3C169DCE5 (string)

vulnerable : true (boolean)

}

32 : { »

criteria : cpe:2.3:o:sun:opensolaris:snv_115:*:sparc:*:*:*:*:* (string)

matchCriteriaId : 78B80C92-7EB5-4343-B830-32E8C011E572 (string)

vulnerable : true (boolean)

}

33 : { »

criteria : cpe:2.3:o:sun:opensolaris:snv_115:*:x86:*:*:*:*:* (string)

matchCriteriaId : 535FF689-13A2-40C6-8706-7782038FDBD3 (string)

vulnerable : true (boolean)

}

34 : { »

criteria : cpe:2.3:o:sun:opensolaris:snv_116:*:sparc:*:*:*:*:* (string)

matchCriteriaId : 46E4ED9C-F013-48D2-8642-E5BA7599A512 (string)

vulnerable : true (boolean)

}

35 : { »

criteria : cpe:2.3:o:sun:opensolaris:snv_116:*:x86:*:*:*:*:* (string)

matchCriteriaId : 843246D3-C2DA-454D-916A-AC8905E5134E (string)

vulnerable : true (boolean)

}

36 : { »

criteria : cpe:2.3:o:sun:opensolaris:snv_117:*:sparc:*:*:*:*:* (string)

matchCriteriaId : A1E8108D-3CE7-4041-9027-1CA7473389EB (string)

vulnerable : true (boolean)

}

37 : { »

criteria : cpe:2.3:o:sun:opensolaris:snv_117:*:x86:*:*:*:*:* (string)

matchCriteriaId : 244B7FE4-C485-4993-9810-3433C83A120E (string)

vulnerable : true (boolean)

}

38 : { »

criteria : cpe:2.3:o:sun:opensolaris:snv_118:*:sparc:*:*:*:*:* (string)

matchCriteriaId : 33E95F0E-D3D5-47CB-B503-7B7F92FB3F15 (string)

vulnerable : true (boolean)

}

39 : { »

criteria : cpe:2.3:o:sun:opensolaris:snv_118:*:x86:*:*:*:*:* (string)

matchCriteriaId : BE586AB9-9D46-4BC2-8092-51482F297410 (string)

vulnerable : true (boolean)

}

40 : { »

criteria : cpe:2.3:o:sun:opensolaris:snv_119:*:sparc:*:*:*:*:* (string)

matchCriteriaId : E8585133-1F25-494A-8859-87B1D93305A7 (string)

vulnerable : true (boolean)

}

41 : { »

criteria : cpe:2.3:o:sun:opensolaris:snv_119:*:x86:*:*:*:*:* (string)

matchCriteriaId : 3A5C836E-51A5-4B1C-AB03-A4DFDA440BD1 (string)

vulnerable : true (boolean)

}

42 : { »

criteria : cpe:2.3:o:sun:opensolaris:snv_120:*:sparc:*:*:*:*:* (string)

matchCriteriaId : F61CD721-197F-4BB3-9D59-CB3C16D6B1B1 (string)

vulnerable : true (boolean)

}

43 : { »

criteria : cpe:2.3:o:sun:opensolaris:snv_120:*:x86:*:*:*:*:* (string)

matchCriteriaId : A1D4C98B-0D01-461C-93C2-0AF9DA6519A1 (string)

vulnerable : true (boolean)

}

44 : { »

criteria : cpe:2.3:o:sun:opensolaris:snv_121:*:sparc:*:*:*:*:* (string)

matchCriteriaId : 3D01EACB-9DB4-4940-A1F2-40474B24AEFD (string)

vulnerable : true (boolean)

}

45 : { »

criteria : cpe:2.3:o:sun:opensolaris:snv_121:*:x86:*:*:*:*:* (string)

matchCriteriaId : A0CE1A06-2588-47AA-81F8-E3655F915C33 (string)

vulnerable : true (boolean)

}

46 : { »

criteria : cpe:2.3:o:sun:opensolaris:snv_122:*:sparc:*:*:*:*:* (string)

matchCriteriaId : D1BBB436-9F7A-4E2D-908B-D57A531B1B3C (string)

vulnerable : true (boolean)

}

47 : { »

criteria : cpe:2.3:o:sun:opensolaris:snv_122:*:x86:*:*:*:*:* (string)

matchCriteriaId : 5972E930-76E2-40FD-8E7F-74E012D34E39 (string)

vulnerable : true (boolean)

}

48 : { »

criteria : cpe:2.3:o:sun:opensolaris:snv_123:*:sparc:*:*:*:*:* (string)

matchCriteriaId : 45B5E359-6FF2-4029-AB6A-3C906DE6AF1B (string)

vulnerable : true (boolean)

}

49 : { »

criteria : cpe:2.3:o:sun:opensolaris:snv_123:*:x86:*:*:*:*:* (string)

matchCriteriaId : A5991C3F-29F6-462F-A34E-2446E357A220 (string)

vulnerable : true (boolean)

}

50 : { »

criteria : cpe:2.3:o:sun:solaris:10:*:sparc:*:*:*:*:* (string)

matchCriteriaId : 7FBA68F0-4577-46F5-A754-D365B6EFF872 (string)

vulnerable : true (boolean)

}

51 : { »

criteria : cpe:2.3:o:sun:solaris:10:*:x86:*:*:*:*:* (string)

matchCriteriaId : E79CFAA6-A08A-4C70-A3D9-B02C29A17FF2 (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

}

]

descriptions : [ »

0 : { »

lang : en (string)

value : Unspecified vulnerability in the timeout mechanism in sshd in Sun Solaris 10, and OpenSolaris snv_99 through snv_123, allows remote attackers to cause a denial of service (daemon outage) via unknown vectors that trigger a "dangling sshd authentication thread." (string)

}

1 : { »

lang : es (string)

value : Vulnerabilidad inespecífica en el mecanismo de tiempo limite en sshd en Sun Solaris v10, y OpenSolaris desde snv_99 hasta snv_123, permite a atacantes remotos producir una denegación de servicio (agotamiento de demonio) a través de vectores desconocidos que inician un "hilo de proceso de autenticación oscilante". (string)

}

]

id : CVE-2009-4075 (string)

lastModified : 2024-11-21T01:08:52.437 (string)

metrics : { »

cvssMetricV2 : [ »

0 : { »

acInsufInfo : true (boolean)

baseSeverity : MEDIUM (string)

cvssData : { »

accessComplexity : LOW (string)

accessVector : NETWORK (string)

authentication : NONE (string)

availabilityImpact : PARTIAL (string)

baseScore : 5 (number)

confidentialityImpact : NONE (string)

integrityImpact : NONE (string)

vectorString : AV:N/AC:L/Au:N/C:N/I:N/A:P (string)

version : 2.0 (string)

}

exploitabilityScore : 10 (number)

impactScore : 2.9 (number)

obtainAllPrivilege : false (boolean)

obtainOtherPrivilege : false (boolean)

obtainUserPrivilege : false (boolean)

source : nvd@nist.gov (string)

type : Primary (string)

userInteractionRequired : false (boolean)

}

]

}

published : 2009-11-25T18:30:00.280 (string)

references : [ »

0 : { »

source : cve@mitre.org (string)

url : http://osvdb.org/60498 (string)

}

1 : { »

source : cve@mitre.org (string)

tags : [ »

0 : Patch (string)

]

url : http://sunsolve.sun.com/search/document.do?assetkey=1-21-143140-01-1 (string)

}

2 : { »

source : cve@mitre.org (string)

tags : [ »

0 : Patch (string)

1 : Vendor Advisory (string)

]

url : http://sunsolve.sun.com/search/document.do?assetkey=1-66-272629-1 (string)

}

3 : { »

source : cve@mitre.org (string)

tags : [ »

0 : Patch (string)

]

url : http://www.securityfocus.com/bid/37116 (string)

}

4 : { »

source : cve@mitre.org (string)

url : http://www.vupen.com/english/advisories/2009/3333 (string)

}

5 : { »

source : cve@mitre.org (string)

url : https://exchange.xforce.ibmcloud.com/vulnerabilities/54401 (string)

}

6 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

url : http://osvdb.org/60498 (string)

}

7 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

tags : [ »

0 : Patch (string)

]

url : http://sunsolve.sun.com/search/document.do?assetkey=1-21-143140-01-1 (string)

}

8 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

tags : [ »

0 : Patch (string)

1 : Vendor Advisory (string)

]

url : http://sunsolve.sun.com/search/document.do?assetkey=1-66-272629-1 (string)

}

9 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

tags : [ »

0 : Patch (string)

]

url : http://www.securityfocus.com/bid/37116 (string)

}

10 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

url : http://www.vupen.com/english/advisories/2009/3333 (string)

}

11 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

url : https://exchange.xforce.ibmcloud.com/vulnerabilities/54401 (string)

}

]

sourceIdentifier : cve@mitre.org (string)

vulnStatus : Modified (string)

weaknesses : [ »

0 : { »

description : [ »

0 : { »

lang : en (string)

value : NVD-CWE-noinfo (string)

}

]

source : nvd@nist.gov (string)

type : Primary (string)

}

]

}

Metrics

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact None

Integrity Impact None

Availability Impact Partial

Affected Vendors & Products

Metrics

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact None

Integrity Impact None

Availability Impact Partial

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object