CVE-2009-4080
First published: Fri Nov 27 2009(Updated: )
Multiple unspecified vulnerabilities in ldap_cachemgr (aka the LDAP client configuration cache daemon) in Sun Solaris 9 and 10, and OpenSolaris before snv_78, allow local users to cause a denial of service (daemon crash) via vectors involving multiple serviceSearchDescriptor attributes and a call to the getldap_lookup function, and unspecified other vectors.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Oracle Solaris and Zettabyte File System (ZFS) | =snv_14 | |
| Oracle Solaris and Zettabyte File System (ZFS) | =snv_01 | |
| Oracle Solaris and Zettabyte File System (ZFS) | =snv_67 | |
| Oracle Solaris and Zettabyte File System (ZFS) | =snv_12 | |
| Oracle Solaris and Zettabyte File System (ZFS) | =snv_57 | |
| Oracle Solaris and Zettabyte File System (ZFS) | =snv_47 | |
| Oracle Solaris and Zettabyte File System (ZFS) | =snv_32 | |
| Oracle Solaris and Zettabyte File System (ZFS) | =snv_70 | |
| Oracle Solaris and Zettabyte File System (ZFS) | =snv_34 | |
| Oracle Solaris and Zettabyte File System (ZFS) | =snv_08 | |
| Oracle Solaris and Zettabyte File System (ZFS) | =snv_66 | |
| Oracle Solaris and Zettabyte File System (ZFS) | =snv_75 | |
| Oracle Solaris and Zettabyte File System (ZFS) | =snv_25 | |
| Oracle Solaris and Zettabyte File System (ZFS) | =snv_07 | |
| Oracle Solaris and Zettabyte File System (ZFS) | =snv_21 | |
| Oracle Solaris and Zettabyte File System (ZFS) | <=snv_77 | |
| Oracle Solaris and Zettabyte File System (ZFS) | =snv_51 | |
| Oracle Solaris and Zettabyte File System (ZFS) | =snv_45 | |
| Oracle Solaris and Zettabyte File System (ZFS) | =snv_52 | |
| Oracle Solaris and Zettabyte File System (ZFS) | =snv_68 | |
| Oracle Solaris and Zettabyte File System (ZFS) | =snv_41 | |
| Oracle Solaris and Zettabyte File System (ZFS) | =snv_20 | |
| Oracle Solaris and Zettabyte File System (ZFS) | =snv_54 | |
| Oracle Solaris and Zettabyte File System (ZFS) | =snv_76 | |
| Oracle Solaris and Zettabyte File System (ZFS) | =snv_33 | |
| Oracle Solaris and Zettabyte File System (ZFS) | =snv_26 | |
| Oracle Solaris and Zettabyte File System (ZFS) | =snv_17 | |
| Oracle Solaris and Zettabyte File System (ZFS) | =snv_05 | |
| Oracle Solaris and Zettabyte File System (ZFS) | =snv_15 | |
| Oracle Solaris and Zettabyte File System (ZFS) | =snv_48 | |
| Oracle Solaris and Zettabyte File System (ZFS) | =snv_42 | |
| Oracle Solaris and Zettabyte File System (ZFS) | =snv_69 | |
| SunOS | =5.8 | |
| Oracle Solaris and Zettabyte File System (ZFS) | =snv_44 | |
| Oracle Solaris and Zettabyte File System (ZFS) | =snv_73 | |
| Oracle Solaris and Zettabyte File System (ZFS) | =snv_61 | |
| Oracle Solaris and Zettabyte File System (ZFS) | =snv_35 | |
| Oracle Solaris and Zettabyte File System (ZFS) | =snv_38 | |
| Oracle Solaris and Zettabyte File System (ZFS) | =snv_56 | |
| Oracle Solaris and Zettabyte File System (ZFS) | =snv_28 | |
| Oracle Solaris and Zettabyte File System (ZFS) | =snv_74 | |
| Oracle Solaris and Zettabyte File System (ZFS) | =snv_16 | |
| Oracle Solaris and Zettabyte File System (ZFS) | =snv_19 | |
| SunOS | =5.10 | |
| SunOS | =5.9 | |
| Oracle Solaris and Zettabyte File System (ZFS) | =snv_50 | |
| Oracle Solaris and Zettabyte File System (ZFS) | =snv_27 | |
| Oracle Solaris and Zettabyte File System (ZFS) | =snv_06 | |
| Oracle Solaris and Zettabyte File System (ZFS) | =snv_02 | |
| Oracle Solaris and Zettabyte File System (ZFS) | =snv_22 | |
| Oracle Solaris and Zettabyte File System (ZFS) | =snv_59 | |
| Oracle Solaris and Zettabyte File System (ZFS) | =snv_63 | |
| Oracle Solaris and Zettabyte File System (ZFS) | =snv_49 | |
| Oracle Solaris and Zettabyte File System (ZFS) | =snv_39 | |
| Oracle Solaris and Zettabyte File System (ZFS) | =snv_71 | |
| Oracle Solaris and Zettabyte File System (ZFS) | =snv_64 | |
| Oracle Solaris and Zettabyte File System (ZFS) | =snv_46 | |
| Oracle Solaris and Zettabyte File System (ZFS) | =snv_60 | |
| Oracle Solaris and Zettabyte File System (ZFS) | =snv_72 | |
| Oracle Solaris and Zettabyte File System (ZFS) | =snv_29 | |
| Oracle Solaris and Zettabyte File System (ZFS) | =snv_58 | |
| Oracle Solaris and Zettabyte File System (ZFS) | =snv_40 | |
| Oracle Solaris and Zettabyte File System (ZFS) | =snv_37 | |
| Oracle Solaris and Zettabyte File System (ZFS) | =snv_36 | |
| Oracle Solaris and Zettabyte File System (ZFS) | =snv_43 | |
| Oracle Solaris and Zettabyte File System (ZFS) | =snv_03 | |
| Oracle Solaris and Zettabyte File System (ZFS) | =snv_11 | |
| Oracle Solaris and Zettabyte File System (ZFS) | =snv_24 | |
| Oracle Solaris and Zettabyte File System (ZFS) | =snv_04 | |
| Oracle Solaris and Zettabyte File System (ZFS) | =snv_55 | |
| Oracle Solaris and Zettabyte File System (ZFS) | =snv_62 | |
| Oracle Solaris and Zettabyte File System (ZFS) | =snv_65 | |
| Oracle Solaris and Zettabyte File System (ZFS) | =snv_31 | |
| Oracle Solaris and Zettabyte File System (ZFS) | =snv_53 | |
| Oracle Solaris and Zettabyte File System (ZFS) | =snv_09 | |
| Oracle Solaris and Zettabyte File System (ZFS) | =snv_18 | |
| Oracle Solaris and Zettabyte File System (ZFS) | =snv_30 | |
| Oracle Solaris and Zettabyte File System (ZFS) | =snv_23 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://sunsolve.sun.com/search/document.do?assetkey=1-21-112960-69-1
- http://sunsolve.sun.com/search/document.do?assetkey=1-66-231402-1
- http://www.securitytracker.com/id?1023239
- http://secunia.com/advisories/37506
- http://www.securityfocus.com/bid/37129
- http://www.vupen.com/english/advisories/2009/3336
- http://secunia.com/advisories/37505
- http://osvdb.org/60514
Frequently Asked Questions
What is the severity of CVE-2009-4080?
CVE-2009-4080 is classified as a denial of service vulnerability affecting Sun Solaris.
How do I fix CVE-2009-4080?
To resolve CVE-2009-4080, update your Sun Solaris system to the latest version available that addresses the vulnerability.
What versions of Solaris are affected by CVE-2009-4080?
CVE-2009-4080 affects multiple versions of Sun Solaris, including Solaris 9 and 10, as well as OpenSolaris before snv_78.
What kind of exploit does CVE-2009-4080 allow?
CVE-2009-4080 allows local users to exploit the vulnerabilities, potentially causing the ldap_cachemgr daemon to crash.
Is there a patch available for CVE-2009-4080?
Yes, Sun has released patches for CVE-2009-4080 that you can apply to affected Solaris systems.
- agent/references
- agent/type
- agent/weakness
- agent/severity
- agent/remedy
- agent/author
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/event
- agent/first-publish-date
- agent/source
- collector/nvd-historical
- agent/software-canonical-lookup-request
- collector/nvd-index
- agent/softwarecombine
- agent/tags
- vendor/sun
- canonical/oracle solaris and zettabyte file system (zfs)
- version/oracle solaris and zettabyte file system (zfs)/snv_14
- version/oracle solaris and zettabyte file system (zfs)/snv_01
- version/oracle solaris and zettabyte file system (zfs)/snv_67
- version/oracle solaris and zettabyte file system (zfs)/snv_12
- version/oracle solaris and zettabyte file system (zfs)/snv_57
- version/oracle solaris and zettabyte file system (zfs)/snv_47
- version/oracle solaris and zettabyte file system (zfs)/snv_32
- version/oracle solaris and zettabyte file system (zfs)/snv_70
- version/oracle solaris and zettabyte file system (zfs)/snv_34
- version/oracle solaris and zettabyte file system (zfs)/snv_08
- version/oracle solaris and zettabyte file system (zfs)/snv_66
- version/oracle solaris and zettabyte file system (zfs)/snv_75
- version/oracle solaris and zettabyte file system (zfs)/snv_25
- version/oracle solaris and zettabyte file system (zfs)/snv_07
- version/oracle solaris and zettabyte file system (zfs)/snv_21
- version/oracle solaris and zettabyte file system (zfs)/snv_77
- version/oracle solaris and zettabyte file system (zfs)/snv_51
- version/oracle solaris and zettabyte file system (zfs)/snv_45
- version/oracle solaris and zettabyte file system (zfs)/snv_52
- version/oracle solaris and zettabyte file system (zfs)/snv_68
- version/oracle solaris and zettabyte file system (zfs)/snv_41
- version/oracle solaris and zettabyte file system (zfs)/snv_20
- version/oracle solaris and zettabyte file system (zfs)/snv_54
- version/oracle solaris and zettabyte file system (zfs)/snv_76
- version/oracle solaris and zettabyte file system (zfs)/snv_33
- version/oracle solaris and zettabyte file system (zfs)/snv_26
- version/oracle solaris and zettabyte file system (zfs)/snv_17
- version/oracle solaris and zettabyte file system (zfs)/snv_05
- version/oracle solaris and zettabyte file system (zfs)/snv_15
- version/oracle solaris and zettabyte file system (zfs)/snv_48
- version/oracle solaris and zettabyte file system (zfs)/snv_42
- version/oracle solaris and zettabyte file system (zfs)/snv_69
- canonical/sunos
- version/sunos/5.8
- version/oracle solaris and zettabyte file system (zfs)/snv_44
- version/oracle solaris and zettabyte file system (zfs)/snv_73
- version/oracle solaris and zettabyte file system (zfs)/snv_61
- version/oracle solaris and zettabyte file system (zfs)/snv_35
- version/oracle solaris and zettabyte file system (zfs)/snv_38
- version/oracle solaris and zettabyte file system (zfs)/snv_56
- version/oracle solaris and zettabyte file system (zfs)/snv_28
- version/oracle solaris and zettabyte file system (zfs)/snv_74
- version/oracle solaris and zettabyte file system (zfs)/snv_16
- version/oracle solaris and zettabyte file system (zfs)/snv_19
- version/sunos/5.10
- version/sunos/5.9
- version/oracle solaris and zettabyte file system (zfs)/snv_50
- version/oracle solaris and zettabyte file system (zfs)/snv_27
- version/oracle solaris and zettabyte file system (zfs)/snv_06
- version/oracle solaris and zettabyte file system (zfs)/snv_02
- version/oracle solaris and zettabyte file system (zfs)/snv_22
- version/oracle solaris and zettabyte file system (zfs)/snv_59
- version/oracle solaris and zettabyte file system (zfs)/snv_63
- version/oracle solaris and zettabyte file system (zfs)/snv_49
- version/oracle solaris and zettabyte file system (zfs)/snv_39
- version/oracle solaris and zettabyte file system (zfs)/snv_71
- version/oracle solaris and zettabyte file system (zfs)/snv_64
- version/oracle solaris and zettabyte file system (zfs)/snv_46
- version/oracle solaris and zettabyte file system (zfs)/snv_60
- version/oracle solaris and zettabyte file system (zfs)/snv_72
- version/oracle solaris and zettabyte file system (zfs)/snv_29
- version/oracle solaris and zettabyte file system (zfs)/snv_58
- version/oracle solaris and zettabyte file system (zfs)/snv_40
- version/oracle solaris and zettabyte file system (zfs)/snv_37
- version/oracle solaris and zettabyte file system (zfs)/snv_36
- version/oracle solaris and zettabyte file system (zfs)/snv_43
- version/oracle solaris and zettabyte file system (zfs)/snv_03
- version/oracle solaris and zettabyte file system (zfs)/snv_11
- version/oracle solaris and zettabyte file system (zfs)/snv_24
- version/oracle solaris and zettabyte file system (zfs)/snv_04
- version/oracle solaris and zettabyte file system (zfs)/snv_55
- version/oracle solaris and zettabyte file system (zfs)/snv_62
- version/oracle solaris and zettabyte file system (zfs)/snv_65
- version/oracle solaris and zettabyte file system (zfs)/snv_31
- version/oracle solaris and zettabyte file system (zfs)/snv_53
- version/oracle solaris and zettabyte file system (zfs)/snv_09
- version/oracle solaris and zettabyte file system (zfs)/snv_18
- version/oracle solaris and zettabyte file system (zfs)/snv_30
- version/oracle solaris and zettabyte file system (zfs)/snv_23