[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

NGS00042 Patch Notification: Solaris USB configuration descriptor kernel stack overflow

To: "bugtraq@xxxxxxxxxxxxxxxxx" <bugtraq@xxxxxxxxxxxxxxxxx>
Subject: NGS00042 Patch Notification: Solaris USB configuration descriptor kernel stack overflow
From: "Research@NGSSecure" <research@xxxxxxxxxxxxx>
Date: Mon, 25 Jul 2011 07:13:26 +0000

Solaris USB configuration descriptor kernel stack overflow (CVE-2011-2295)

25 July 2011

Andy Davis of NGS Secure has discovered a High risk vulnerability in Oracle 
Solaris. A local attacker can send a malformed USB configuration descriptor via 
a malicious USB device and trigger a kernel stack overflow, which could 
potentially result in arbitrary code execution.

Versions affected include:
Solaris 8, 9, 10, and 11 Express

This issue is addressed in the Oracle Critical Patch Update Advisory - July 
2011, which is available at the following URL:
http://www.oracle.com/technetwork/topics/security/cpujuly2011-313328.html

NGS Secure is going to withhold details of this flaw for three months. This 
three month window will allow users the time needed to apply the patch before 
the details are released to the general public. This reflects the NGS Secure 
approach to responsible disclosure.

NGS Secure Research
http://www.ngssecure.com

Prev by Date: phpMyAdmin 3.x Conditional Session Manipulation
Next by Date: [SECURITY] [DSA 2282-1] qemu-kvm security update
Previous by thread: phpMyAdmin 3.x Conditional Session Manipulation
Next by thread: [SECURITY] [DSA 2282-1] qemu-kvm security update
Index(es):
- Date
- Thread