CVE-2009-2012Improper Restriction of Operations within the Bounds of a Memory Buffer in Opensolaris

CWE-119Improper Restriction of Operations within the Bounds of a Memory BufferCWE-122Heap-based Buffer Overflow28 documents6 sources
Severity
1.9LOWNVD
EPSS
0.1%
top 82.78%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
SUN Opensolaris
Timeline
PublishedJun 9
Latest updateMay 2

Description

Unspecified vulnerability in idmap in Sun OpenSolaris snv_88 through snv_110, when a CIFS server is enabled, allows local users to cause a denial of service (idpmapd daemon crash and idmapd outage) via unknown vectors.

CVSS vector

AV:L/AC:M/C:N/I:N/A:PExploitability: 3.4 | Impact: 2.9

Affected Packages1 packages

NVDsun/opensolaris23 versions+22

🔴Vulnerability Details

2
GHSA
GHSA-pf37-xpvh-73gx: Unspecified vulnerability in idmap in Sun OpenSolaris snv_88 through snv_110, when a CIFS server is enabled, allows local users to cause a denial of s2022-05-02
CVEList
CVE-2009-2012: Unspecified vulnerability in idmap in Sun OpenSolaris snv_88 through snv_110, when a CIFS server is enabled, allows local users to cause a denial of s2009-06-09

💥Exploits & PoCs

9
Exploit-DB
Zimbra 2009-2013 - Local File Inclusion2013-12-06
Exploit-DB
IBM System Director Agent - DLL Injection (Metasploit)2012-12-07
Exploit-DB
IBM System Director Agent - Remote System Level2012-12-02
Exploit-DB
IrfanView - '.TIF' Image Decompression Buffer Overflow2012-11-13
Exploit-DB
Mini-stream RM-MP3 Converter 3.1.2.1.2010.03.30 - Local Buffer Overflow (ASLR + DEP Bypass)2012-07-27

📋Vendor Advisories

4
Red Hat
mysql: regression of CVE-2009-40302012-09-27
Red Hat
plug-in): Heap-buffer overflow by decoding certain PSD headers2012-08-20
Red Hat
kernel: Buffer overflow in the HFS plus filesystem (different issue than CVE-2009-4020)2012-05-04
Red Hat
kernel: ext4: fix inconsistency in ext4_fill_flex_info()2012-01-10

💬Community

9
Bugzilla
CVE-2012-4452 mysql: regression of CVE-2009-40302012-09-26
Bugzilla
CVE-2012-3402 gimp (PSD plug-in): Heap-buffer overflow by decoding certain PSD headers2012-07-10
Bugzilla
CVE-2012-2319 kernel: Buffer overflow in the HFS plus filesystem (different issue than CVE-2009-4020) [fedora-all]2012-05-09
Bugzilla
CVE-2012-2319 kernel: Buffer overflow in the HFS plus filesystem (different issue than CVE-2009-4020)2012-05-07
Bugzilla
CVE-2012-2100 kernel: ext4: fix inconsistency in ext4_fill_flex_info()2012-04-04
CVE-2009-2012 — SUN Opensolaris vulnerability | cvebase