CVE-2004-1393
Description
A local unprivileged user can cause a denial of service (system hang) via an unspecified vulnerability in the tcsetattr() function on SPARC-based Solaris 2.6, 7, and 8.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
A local unprivileged user can cause a denial of service (system hang) via an unspecified vulnerability in the tcsetattr() function on SPARC-based Solaris 2.6, 7, and 8.
Vulnerability
An unspecified vulnerability exists in the tcsetattr() library function on Sun Solaris for SPARC systems, affecting versions 2.6, 7, and 8 [1]. The function is used to set terminal parameters, and a flaw in its handling allows a local user to trigger a system hang [1].
Exploitation
An unprivileged local user with access to the affected Solaris system can trigger the vulnerability by invoking tcsetattr() in a specific unspecified manner [1]. No authentication beyond local system access is required, and no user interaction beyond executing the attack is needed.
Impact
Successful exploitation causes the entire system to hang, resulting in a denial-of-service condition [1]. Functionality can only be restored by rebooting the system, leading to potential disruption of services and loss of availability [1].
Mitigation
Sun Microsystems released patches to address the vulnerability; affected systems should apply the appropriate patch for their Solaris version as indicated in the Sun Security Advisory [1]. Reboot is required after patching to restore normal operation.
AI Insight generated on May 24, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
4cpe:2.3:o:sun:solaris:2.6:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:sun:solaris:2.6:*:*:*:*:*:*:*
- (no CPE)range: 2.6, 7, 8
cpe:2.3:o:sun:sunos:5.7:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:sun:sunos:5.7:*:*:*:*:*:*:*
- cpe:2.3:o:sun:sunos:5.8:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
7- secunia.com/advisories/10730/nvdPatch
- sunsolve.sun.com/search/document.donvdPatchVendor Advisory
- www.auscert.org.au/render.htmlnvdVendor Advisory
- www.kb.cert.org/vuls/id/379390nvdThird Party AdvisoryUS Government Resource
- www.osvdb.org/3786nvd
- www.securityfocus.com/bid/9548nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/14998nvd
News mentions
0No linked articles in our index yet.