ID CVE-2008-5684
Summary Unspecified vulnerability in the X Inter Client Exchange library (aka libICE) in Sun Solaris 8 through 10 and OpenSolaris before snv_85 allows context-dependent attackers to cause a denial of service (application crash), as demonstrated by a port scan that triggers a segmentation violation in the Gnome session manager (aka gnome-session).
References
Vulnerable Configurations
  • cpe:2.3:o:sun:opensolaris:snv_01:*:x86:*:*:*:*:*
    cpe:2.3:o:sun:opensolaris:snv_01:*:x86:*:*:*:*:*
  • cpe:2.3:o:sun:opensolaris:snv_02:*:x86:*:*:*:*:*
    cpe:2.3:o:sun:opensolaris:snv_02:*:x86:*:*:*:*:*
  • cpe:2.3:o:sun:opensolaris:snv_03:*:x86:*:*:*:*:*
    cpe:2.3:o:sun:opensolaris:snv_03:*:x86:*:*:*:*:*
  • cpe:2.3:o:sun:opensolaris:snv_04:*:x86:*:*:*:*:*
    cpe:2.3:o:sun:opensolaris:snv_04:*:x86:*:*:*:*:*
  • cpe:2.3:o:sun:opensolaris:snv_05:*:x86:*:*:*:*:*
    cpe:2.3:o:sun:opensolaris:snv_05:*:x86:*:*:*:*:*
  • cpe:2.3:o:sun:opensolaris:snv_06:*:x86:*:*:*:*:*
    cpe:2.3:o:sun:opensolaris:snv_06:*:x86:*:*:*:*:*
  • cpe:2.3:o:sun:opensolaris:snv_07:*:x86:*:*:*:*:*
    cpe:2.3:o:sun:opensolaris:snv_07:*:x86:*:*:*:*:*
  • cpe:2.3:o:sun:opensolaris:snv_08:*:x86:*:*:*:*:*
    cpe:2.3:o:sun:opensolaris:snv_08:*:x86:*:*:*:*:*
  • cpe:2.3:o:sun:opensolaris:snv_09:*:x86:*:*:*:*:*
    cpe:2.3:o:sun:opensolaris:snv_09:*:x86:*:*:*:*:*
  • cpe:2.3:o:sun:opensolaris:snv_10:*:x86:*:*:*:*:*
    cpe:2.3:o:sun:opensolaris:snv_10:*:x86:*:*:*:*:*
  • cpe:2.3:o:sun:opensolaris:snv_11:*:x86:*:*:*:*:*
    cpe:2.3:o:sun:opensolaris:snv_11:*:x86:*:*:*:*:*
  • cpe:2.3:o:sun:opensolaris:snv_12:*:x86:*:*:*:*:*
    cpe:2.3:o:sun:opensolaris:snv_12:*:x86:*:*:*:*:*
  • cpe:2.3:o:sun:opensolaris:snv_13:*:x86:*:*:*:*:*
    cpe:2.3:o:sun:opensolaris:snv_13:*:x86:*:*:*:*:*
  • cpe:2.3:o:sun:opensolaris:snv_14:*:x86:*:*:*:*:*
    cpe:2.3:o:sun:opensolaris:snv_14:*:x86:*:*:*:*:*
  • cpe:2.3:o:sun:opensolaris:snv_15:*:x86:*:*:*:*:*
    cpe:2.3:o:sun:opensolaris:snv_15:*:x86:*:*:*:*:*
  • cpe:2.3:o:sun:opensolaris:snv_16:*:x86:*:*:*:*:*
    cpe:2.3:o:sun:opensolaris:snv_16:*:x86:*:*:*:*:*
  • cpe:2.3:o:sun:opensolaris:snv_17:*:x86:*:*:*:*:*
    cpe:2.3:o:sun:opensolaris:snv_17:*:x86:*:*:*:*:*
  • cpe:2.3:o:sun:opensolaris:snv_18:*:x86:*:*:*:*:*
    cpe:2.3:o:sun:opensolaris:snv_18:*:x86:*:*:*:*:*
  • cpe:2.3:o:sun:opensolaris:snv_19:*:x86:*:*:*:*:*
    cpe:2.3:o:sun:opensolaris:snv_19:*:x86:*:*:*:*:*
  • cpe:2.3:o:sun:opensolaris:snv_20:*:x86:*:*:*:*:*
    cpe:2.3:o:sun:opensolaris:snv_20:*:x86:*:*:*:*:*
  • cpe:2.3:o:sun:opensolaris:snv_21:*:x86:*:*:*:*:*
    cpe:2.3:o:sun:opensolaris:snv_21:*:x86:*:*:*:*:*
  • cpe:2.3:o:sun:opensolaris:snv_22:*:x86:*:*:*:*:*
    cpe:2.3:o:sun:opensolaris:snv_22:*:x86:*:*:*:*:*
  • cpe:2.3:o:sun:opensolaris:snv_23:*:x86:*:*:*:*:*
    cpe:2.3:o:sun:opensolaris:snv_23:*:x86:*:*:*:*:*
  • cpe:2.3:o:sun:opensolaris:snv_24:*:x86:*:*:*:*:*
    cpe:2.3:o:sun:opensolaris:snv_24:*:x86:*:*:*:*:*
  • cpe:2.3:o:sun:opensolaris:snv_25:*:x86:*:*:*:*:*
    cpe:2.3:o:sun:opensolaris:snv_25:*:x86:*:*:*:*:*
  • cpe:2.3:o:sun:opensolaris:snv_26:*:x86:*:*:*:*:*
    cpe:2.3:o:sun:opensolaris:snv_26:*:x86:*:*:*:*:*
  • cpe:2.3:o:sun:opensolaris:snv_27:*:x86:*:*:*:*:*
    cpe:2.3:o:sun:opensolaris:snv_27:*:x86:*:*:*:*:*
  • cpe:2.3:o:sun:opensolaris:snv_28:*:x86:*:*:*:*:*
    cpe:2.3:o:sun:opensolaris:snv_28:*:x86:*:*:*:*:*
  • cpe:2.3:o:sun:opensolaris:snv_29:*:x86:*:*:*:*:*
    cpe:2.3:o:sun:opensolaris:snv_29:*:x86:*:*:*:*:*
  • cpe:2.3:o:sun:opensolaris:snv_30:*:x86:*:*:*:*:*
    cpe:2.3:o:sun:opensolaris:snv_30:*:x86:*:*:*:*:*
  • cpe:2.3:o:sun:opensolaris:snv_31:*:x86:*:*:*:*:*
    cpe:2.3:o:sun:opensolaris:snv_31:*:x86:*:*:*:*:*
  • cpe:2.3:o:sun:opensolaris:snv_32:*:x86:*:*:*:*:*
    cpe:2.3:o:sun:opensolaris:snv_32:*:x86:*:*:*:*:*
  • cpe:2.3:o:sun:opensolaris:snv_33:*:x86:*:*:*:*:*
    cpe:2.3:o:sun:opensolaris:snv_33:*:x86:*:*:*:*:*
  • cpe:2.3:o:sun:opensolaris:snv_34:*:x86:*:*:*:*:*
    cpe:2.3:o:sun:opensolaris:snv_34:*:x86:*:*:*:*:*
  • cpe:2.3:o:sun:opensolaris:snv_35:*:x86:*:*:*:*:*
    cpe:2.3:o:sun:opensolaris:snv_35:*:x86:*:*:*:*:*
  • cpe:2.3:o:sun:opensolaris:snv_36:*:x86:*:*:*:*:*
    cpe:2.3:o:sun:opensolaris:snv_36:*:x86:*:*:*:*:*
  • cpe:2.3:o:sun:opensolaris:snv_37:*:x86:*:*:*:*:*
    cpe:2.3:o:sun:opensolaris:snv_37:*:x86:*:*:*:*:*
  • cpe:2.3:o:sun:opensolaris:snv_38:*:x86:*:*:*:*:*
    cpe:2.3:o:sun:opensolaris:snv_38:*:x86:*:*:*:*:*
  • cpe:2.3:o:sun:opensolaris:snv_39:*:x86:*:*:*:*:*
    cpe:2.3:o:sun:opensolaris:snv_39:*:x86:*:*:*:*:*
  • cpe:2.3:o:sun:opensolaris:snv_40:*:x86:*:*:*:*:*
    cpe:2.3:o:sun:opensolaris:snv_40:*:x86:*:*:*:*:*
  • cpe:2.3:o:sun:opensolaris:snv_41:*:x86:*:*:*:*:*
    cpe:2.3:o:sun:opensolaris:snv_41:*:x86:*:*:*:*:*
  • cpe:2.3:o:sun:opensolaris:snv_42:*:x86:*:*:*:*:*
    cpe:2.3:o:sun:opensolaris:snv_42:*:x86:*:*:*:*:*
  • cpe:2.3:o:sun:opensolaris:snv_43:*:x86:*:*:*:*:*
    cpe:2.3:o:sun:opensolaris:snv_43:*:x86:*:*:*:*:*
  • cpe:2.3:o:sun:opensolaris:snv_44:*:x86:*:*:*:*:*
    cpe:2.3:o:sun:opensolaris:snv_44:*:x86:*:*:*:*:*
  • cpe:2.3:o:sun:opensolaris:snv_45:*:x86:*:*:*:*:*
    cpe:2.3:o:sun:opensolaris:snv_45:*:x86:*:*:*:*:*
  • cpe:2.3:o:sun:opensolaris:snv_46:*:x86:*:*:*:*:*
    cpe:2.3:o:sun:opensolaris:snv_46:*:x86:*:*:*:*:*
  • cpe:2.3:o:sun:opensolaris:snv_47:*:x86:*:*:*:*:*
    cpe:2.3:o:sun:opensolaris:snv_47:*:x86:*:*:*:*:*
  • cpe:2.3:o:sun:opensolaris:snv_48:*:x86:*:*:*:*:*
    cpe:2.3:o:sun:opensolaris:snv_48:*:x86:*:*:*:*:*
  • cpe:2.3:o:sun:opensolaris:snv_49:*:x86:*:*:*:*:*
    cpe:2.3:o:sun:opensolaris:snv_49:*:x86:*:*:*:*:*
  • cpe:2.3:o:sun:opensolaris:snv_50:*:x86:*:*:*:*:*
    cpe:2.3:o:sun:opensolaris:snv_50:*:x86:*:*:*:*:*
  • cpe:2.3:o:sun:opensolaris:snv_51:*:x86:*:*:*:*:*
    cpe:2.3:o:sun:opensolaris:snv_51:*:x86:*:*:*:*:*
  • cpe:2.3:o:sun:opensolaris:snv_52:*:x86:*:*:*:*:*
    cpe:2.3:o:sun:opensolaris:snv_52:*:x86:*:*:*:*:*
  • cpe:2.3:o:sun:opensolaris:snv_53:*:x86:*:*:*:*:*
    cpe:2.3:o:sun:opensolaris:snv_53:*:x86:*:*:*:*:*
  • cpe:2.3:o:sun:opensolaris:snv_54:*:x86:*:*:*:*:*
    cpe:2.3:o:sun:opensolaris:snv_54:*:x86:*:*:*:*:*
  • cpe:2.3:o:sun:opensolaris:snv_55:*:x86:*:*:*:*:*
    cpe:2.3:o:sun:opensolaris:snv_55:*:x86:*:*:*:*:*
  • cpe:2.3:o:sun:opensolaris:snv_56:*:x86:*:*:*:*:*
    cpe:2.3:o:sun:opensolaris:snv_56:*:x86:*:*:*:*:*
  • cpe:2.3:o:sun:opensolaris:snv_57:*:x86:*:*:*:*:*
    cpe:2.3:o:sun:opensolaris:snv_57:*:x86:*:*:*:*:*
  • cpe:2.3:o:sun:opensolaris:snv_58:*:x86:*:*:*:*:*
    cpe:2.3:o:sun:opensolaris:snv_58:*:x86:*:*:*:*:*
  • cpe:2.3:o:sun:opensolaris:snv_59:*:x86:*:*:*:*:*
    cpe:2.3:o:sun:opensolaris:snv_59:*:x86:*:*:*:*:*
  • cpe:2.3:o:sun:opensolaris:snv_60:*:x86:*:*:*:*:*
    cpe:2.3:o:sun:opensolaris:snv_60:*:x86:*:*:*:*:*
  • cpe:2.3:o:sun:opensolaris:snv_61:*:x86:*:*:*:*:*
    cpe:2.3:o:sun:opensolaris:snv_61:*:x86:*:*:*:*:*
  • cpe:2.3:o:sun:opensolaris:snv_62:*:x86:*:*:*:*:*
    cpe:2.3:o:sun:opensolaris:snv_62:*:x86:*:*:*:*:*
  • cpe:2.3:o:sun:opensolaris:snv_63:*:x86:*:*:*:*:*
    cpe:2.3:o:sun:opensolaris:snv_63:*:x86:*:*:*:*:*
  • cpe:2.3:o:sun:opensolaris:snv_64:*:x86:*:*:*:*:*
    cpe:2.3:o:sun:opensolaris:snv_64:*:x86:*:*:*:*:*
  • cpe:2.3:o:sun:opensolaris:snv_65:*:x86:*:*:*:*:*
    cpe:2.3:o:sun:opensolaris:snv_65:*:x86:*:*:*:*:*
  • cpe:2.3:o:sun:opensolaris:snv_66:*:x86:*:*:*:*:*
    cpe:2.3:o:sun:opensolaris:snv_66:*:x86:*:*:*:*:*
  • cpe:2.3:o:sun:opensolaris:snv_67:*:x86:*:*:*:*:*
    cpe:2.3:o:sun:opensolaris:snv_67:*:x86:*:*:*:*:*
  • cpe:2.3:o:sun:opensolaris:snv_68:*:x86:*:*:*:*:*
    cpe:2.3:o:sun:opensolaris:snv_68:*:x86:*:*:*:*:*
  • cpe:2.3:o:sun:opensolaris:snv_69:*:x86:*:*:*:*:*
    cpe:2.3:o:sun:opensolaris:snv_69:*:x86:*:*:*:*:*
  • cpe:2.3:o:sun:opensolaris:snv_70:*:x86:*:*:*:*:*
    cpe:2.3:o:sun:opensolaris:snv_70:*:x86:*:*:*:*:*
  • cpe:2.3:o:sun:opensolaris:snv_71:*:x86:*:*:*:*:*
    cpe:2.3:o:sun:opensolaris:snv_71:*:x86:*:*:*:*:*
  • cpe:2.3:o:sun:opensolaris:snv_72:*:x86:*:*:*:*:*
    cpe:2.3:o:sun:opensolaris:snv_72:*:x86:*:*:*:*:*
  • cpe:2.3:o:sun:opensolaris:snv_73:*:x86:*:*:*:*:*
    cpe:2.3:o:sun:opensolaris:snv_73:*:x86:*:*:*:*:*
  • cpe:2.3:o:sun:opensolaris:snv_74:*:x86:*:*:*:*:*
    cpe:2.3:o:sun:opensolaris:snv_74:*:x86:*:*:*:*:*
  • cpe:2.3:o:sun:opensolaris:snv_75:*:x86:*:*:*:*:*
    cpe:2.3:o:sun:opensolaris:snv_75:*:x86:*:*:*:*:*
  • cpe:2.3:o:sun:opensolaris:snv_76:*:x86:*:*:*:*:*
    cpe:2.3:o:sun:opensolaris:snv_76:*:x86:*:*:*:*:*
  • cpe:2.3:o:sun:opensolaris:snv_77:*:x86:*:*:*:*:*
    cpe:2.3:o:sun:opensolaris:snv_77:*:x86:*:*:*:*:*
  • cpe:2.3:o:sun:opensolaris:snv_78:*:x86:*:*:*:*:*
    cpe:2.3:o:sun:opensolaris:snv_78:*:x86:*:*:*:*:*
  • cpe:2.3:o:sun:opensolaris:snv_79:*:x86:*:*:*:*:*
    cpe:2.3:o:sun:opensolaris:snv_79:*:x86:*:*:*:*:*
  • cpe:2.3:o:sun:opensolaris:snv_80:*:x86:*:*:*:*:*
    cpe:2.3:o:sun:opensolaris:snv_80:*:x86:*:*:*:*:*
  • cpe:2.3:o:sun:opensolaris:snv_81:*:x86:*:*:*:*:*
    cpe:2.3:o:sun:opensolaris:snv_81:*:x86:*:*:*:*:*
  • cpe:2.3:o:sun:opensolaris:snv_82:*:x86:*:*:*:*:*
    cpe:2.3:o:sun:opensolaris:snv_82:*:x86:*:*:*:*:*
  • cpe:2.3:o:sun:opensolaris:snv_83:*:x86:*:*:*:*:*
    cpe:2.3:o:sun:opensolaris:snv_83:*:x86:*:*:*:*:*
  • cpe:2.3:o:sun:opensolaris:*:*:x86:*:*:*:*:*
    cpe:2.3:o:sun:opensolaris:*:*:x86:*:*:*:*:*
  • cpe:2.3:o:sun:opensolaris:snv_85:*:x86:*:*:*:*:*
    cpe:2.3:o:sun:opensolaris:snv_85:*:x86:*:*:*:*:*
  • cpe:2.3:o:sun:solaris:8:*:sparc:*:*:*:*:*
    cpe:2.3:o:sun:solaris:8:*:sparc:*:*:*:*:*
  • cpe:2.3:o:sun:solaris:8:*:x86:*:*:*:*:*
    cpe:2.3:o:sun:solaris:8:*:x86:*:*:*:*:*
  • cpe:2.3:o:sun:solaris:9:*:sparc:*:*:*:*:*
    cpe:2.3:o:sun:solaris:9:*:sparc:*:*:*:*:*
  • cpe:2.3:o:sun:solaris:9:*:x86:*:*:*:*:*
    cpe:2.3:o:sun:solaris:9:*:x86:*:*:*:*:*
  • cpe:2.3:o:sun:solaris:10:*:sparc:*:*:*:*:*
    cpe:2.3:o:sun:solaris:10:*:sparc:*:*:*:*:*
  • cpe:2.3:o:sun:solaris:10:*:x86:*:*:*:*:*
    cpe:2.3:o:sun:solaris:10:*:x86:*:*:*:*:*
CVSS
Base: 5.0 (as of 29-09-2017 - 01:32)
Impact:
Exploitability:
CWE CWE-399
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
NONE NONE PARTIAL
cvss-vector via4 AV:N/AC:L/Au:N/C:N/I:N/A:P
oval via4
accepted 2009-02-16T04:00:24.753-05:00
class vulnerability
contributors
name Michael Wood
organization Hewlett-Packard
definition_extensions
  • comment Solaris 8 (SPARC) is installed
    oval oval:org.mitre.oval:def:1539
  • comment Solaris 9 (SPARC) is installed
    oval oval:org.mitre.oval:def:1457
  • comment Solaris 10 (SPARC) is installed
    oval oval:org.mitre.oval:def:1440
  • comment Solaris 8 (x86) is installed
    oval oval:org.mitre.oval:def:2059
  • comment Solaris 9 (x86) is installed
    oval oval:org.mitre.oval:def:1683
  • comment Solaris 10 (x86) is installed
    oval oval:org.mitre.oval:def:1926
description Unspecified vulnerability in the X Inter Client Exchange library (aka libICE) in Sun Solaris 8 through 10 and OpenSolaris before snv_85 allows context-dependent attackers to cause a denial of service (application crash), as demonstrated by a port scan that triggers a segmentation violation in the Gnome session manager (aka gnome-session).
family unix
id oval:org.mitre.oval:def:6003
status accepted
submitted 2009-01-05T16:39:26.000-05:00
title Security Vulnerability in the X Inter Client Exchange Library (libICE) Shipped With Solaris May Allow a Denial of Service (DoS)
version 35
refmap via4
bid 32807
confirm http://sunsolve.sun.com/search/document.do?assetkey=1-21-119067-11-1
misc http://support.avaya.com/elmodocs2/security/ASA-2008-513.htm
sectrack 1021391
secunia
  • 33157
  • 33325
sunalert 243566
vupen ADV-2008-3431
xf sun-solaris-libice-dos(47311)
Last major update 29-09-2017 - 01:32
Published 19-12-2008 - 17:30
Last modified 29-09-2017 - 01:32
Back to Top