What is the severity of CVE-2006-5396?

CVE-2006-5396 has been classified as a denial of service vulnerability.

How does CVE-2006-5396 affect Solaris 10 users?

CVE-2006-5396 allows local users on Solaris 10 to crash the system through a specific TCP loopback connection.

What is the impact of exploiting CVE-2006-5396?

Exploiting CVE-2006-5396 results in a system crash, making it unavailable for legitimate users.

How can CVE-2006-5396 be mitigated?

To mitigate CVE-2006-5396, users should update their Solaris 10 systems to the version released after October 17, 2006.

Who is affected by CVE-2006-5396?

Local users on systems running Solaris 10 before the October 17, 2006 update are affected by CVE-2006-5396.

Vulnerability/
CVE-2006-5396

medium

4.9

CWE

NVD-CWE-Other

18/10/2006

9/4/2025

CVE-2006-5396

First published: Wed Oct 18 2006(Updated: )

The tcp_fuse_rcv_drain function in the Sun Solaris 10 kernel before 20061017, when TCP Fusion is enabled, allows local users to cause a denial of service (system crash) via a TCP loopback connection with both endpoints on the same system.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
Oracle Solaris and Zettabyte File System (ZFS)	=10.0
	=10.0

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2006-5396?
CVE-2006-5396 has been classified as a denial of service vulnerability.
How does CVE-2006-5396 affect Solaris 10 users?
CVE-2006-5396 allows local users on Solaris 10 to crash the system through a specific TCP loopback connection.
What is the impact of exploiting CVE-2006-5396?
Exploiting CVE-2006-5396 results in a system crash, making it unavailable for legitimate users.
How can CVE-2006-5396 be mitigated?
To mitigate CVE-2006-5396, users should update their Solaris 10 systems to the version released after October 17, 2006.
Who is affected by CVE-2006-5396?
Local users on systems running Solaris 10 before the October 17, 2006 update are affected by CVE-2006-5396.

agent/type
collector/mitre-cve
source/MITRE
agent/author
agent/severity
agent/references
agent/weakness
agent/description
agent/first-publish-date
collector/nvd-historical
agent/software-canonical-lookup-request
collector/nvd-index
collector/nvd-api
source/NVD
agent/software-canonical-lookup
agent/source
agent/last-modified-date
agent/softwarecombine
agent/tags
agent/event
vendor/sun
canonical/oracle solaris and zettabyte file system (zfs)
version/oracle solaris and zettabyte file system (zfs)/10.0

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.