CVE-2007-5726

high

Description

Unspecified vulnerability in the Stream Control Transmission Protocol (sctp) functionality in Sun Solaris 10, when at least one SCTP socket is in the LISTEN state, allows remote attackers to cause a denial of service (panic) via unspecified vectors related to "INIT processing."

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/38126

http://www.vupen.com/english/advisories/2007/3633

http://www.securitytracker.com/id?1018867

http://www.securityfocus.com/bid/26224

http://sunsolve.sun.com/search/document.do?assetkey=1-66-201252-1

http://sunsolve.sun.com/search/document.do?assetkey=1-26-103101-1

http://secunia.com/advisories/27428

http://osvdb.org/40815

Details

Source: Mitre, NVD

Published: 2007-10-30

Updated: 2024-11-21

Risk Information

CVSS v2

Base Score: 6.8

Vector: CVSS2#AV:N/AC:L/Au:S/C:N/I:N/A:C

Severity: Medium

CVSS v3

Base Score: 7.5

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Severity: High