CVE-2007-3723

Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
12/07/2007
Last modified:
15/11/2008

Description

The process scheduler in the Sun Solaris kernel does not make use of the process statistics kept by the kernel and performs scheduling based upon CPU billing gathered from periodic process sampling ticks, which allows local users to cause a denial of service (CPU consumption), as described in "Secretly Monopolizing the CPU Without Superuser Privileges."

Vulnerable products and versions

CPE From Up to
cpe:2.3:o:sun:solaris:*:*:*:*:*:*:*:*