4.9
CVE-2007-4732
- EPSS 0.39%
- Veröffentlicht 06.09.2007 19:17:00
- Zuletzt bearbeitet 16.06.2026 22:44:40
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
Unspecified vulnerability in the strfreectty function in the Special File System (SPECFS) in Sun Solaris 8 through 10 allows local users to cause a denial of service (system panic), related to passing a NULL pointer to the pgsignal function.
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.39% | 0.306 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 4.9 | 3.9 | 6.9 |
AV:L/AC:L/Au:N/C:N/I:N/A:C
|
CWE-20 Improper Input Validation
The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.
http://osvdb.org/37323
http://secunia.com/advisories/26528
http://secunia.com/advisories/26731
http://securitytracker.com/id?1018643
http://sunsolve.sun.com/search/document.do?assetkey=1-26-103009-1
http://support.avaya.com/elmodocs2/security/ASA-2007-374.htm
http://www.securityfocus.com/bid/25510
http://www.vupen.com/english/advisories/2007/3031
https://exchange.xforce.ibmcloud.com/vulnerabilities/36379
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2173