VYPR

Solaris

by Sun Corporation

CVEs (499)

  • CVE-2009-0132Jan 15, 2009
    risk 0.00cvss epss 0.00

    Integer overflow in the aio_suspend function in Sun Solaris 8 through 10 and OpenSolaris, when 32-bit mode is enabled, allows local users to cause a denial of service (panic) via a large integer value in the second argument (aka nent argument).

  • CVE-2009-0069Jan 7, 2009
    risk 0.00cvss epss 0.00

    Unspecified vulnerability in the nfs4rename_persistent_fh function in the NFS 4 (aka NFSv4) client in the kernel in Sun Solaris 10 and OpenSolaris before snv_102 allows local users to cause a denial of service (recursive mutex_enter and panic) via unspecified vectors.

  • CVE-2008-5699Dec 22, 2008
    risk 0.00cvss epss 0.00

    The name service cache daemon (nscd) in Sun Solaris 10 and OpenSolaris snv_50 through snv_104 does not properly check permissions, which allows local users to gain privileges and obtain sensitive information via unspecified vectors.

  • CVE-2008-5690Dec 19, 2008
    risk 0.00cvss epss 0.00

    The Kerberos credential renewal feature in Sun Solaris 8, 9, and 10, and OpenSolaris build snv_01 through snv_104, allows local users to cause a denial of service (authentication failure) via unspecified vectors related to incorrect cache file permissions, and lack of credential…

  • CVE-2008-5684Dec 19, 2008
    risk 0.00cvss epss 0.02

    Unspecified vulnerability in the X Inter Client Exchange library (aka libICE) in Sun Solaris 8 through 10 and OpenSolaris before snv_85 allows context-dependent attackers to cause a denial of service (application crash), as demonstrated by a port scan that triggers a…

  • CVE-2008-5661Dec 17, 2008
    risk 0.00cvss epss 0.02

    The IPv4 Forwarding feature in Sun Solaris 10 and OpenSolaris snv_47 through snv_82, with certain patches installed, allows remote attackers to cause a denial of service (panic) via unknown vectors that trigger a NULL pointer dereference.

  • CVE-2008-5550Dec 12, 2008
    risk 0.00cvss epss 0.02

    Open redirect vulnerability in console/faces/jsp/login/BeginLogin.jsp in Sun Java Web Console 3.0.2 through 3.0.5 and Solaris 10 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via the redirect_url parameter.

  • CVE-2008-5410Dec 10, 2008
    risk 0.00cvss epss 0.03

    The PK11_SESSION cache in the OpenSSL PKCS#11 engine in Sun Solaris 10 does not maintain reference counts for operations with asymmetric keys, which allows context-dependent attackers to cause a denial of service (failed cryptographic operations) via unspecified vectors, related…

  • CVE-2008-5133Nov 18, 2008
    risk 0.00cvss epss 0.02

    ipnat in IP Filter in Sun Solaris 10 and OpenSolaris before snv_96, when running on a DNS server with Network Address Translation (NAT) configured, improperly changes the source port of a packet when the destination port is the DNS port, which allows remote attackers to bypass…

  • CVE-2008-5111Nov 17, 2008
    risk 0.00cvss epss 0.00

    Unspecified vulnerability in the socket function in Sun Solaris 10 and OpenSolaris snv_57 through snv_91, when InfiniBand hardware is not installed, allows local users to cause a denial of service (panic) via unknown vectors, related to the socksdpv_close function.

  • CVE-2008-4160Sep 22, 2008
    risk 0.00cvss epss 0.00

    Unspecified vulnerability in the UFS module in Sun Solaris 8 through 10 and OpenSolaris allows local users to cause a denial of service (NULL pointer dereference and kernel panic) via unknown vectors related to the Solaris Access Control List (ACL) implementation.

  • CVE-2008-3875Sep 2, 2008
    risk 0.00cvss epss 0.00

    The kernel in Sun Solaris 8 through 10 and OpenSolaris before snv_90 allows local users to bypass chroot, zones, and the Solaris Trusted Extensions multi-level security policy, and establish a covert communication channel, via unspecified vectors involving system calls.

  • CVE-2008-3839Aug 27, 2008
    risk 0.00cvss epss 0.00

    Unspecified vulnerability in the NFS module in the kernel in Sun Solaris 10 and OpenSolaris snv_59 through snv_87, when configured as an NFS server without the nodevices option, allows local users to cause a denial of service (panic) via unspecified vectors.

  • CVE-2008-3838Aug 27, 2008
    risk 0.00cvss epss 0.00

    Unspecified vulnerability in the NFS Remote Procedure Calls (RPC) zones implementation in Sun Solaris 10 and OpenSolaris before snv_88 allows local administrators of non-global zones to read and modify NFS traffic for arbitrary non-global zones, possibly leading to file…

  • CVE-2008-3666Aug 13, 2008
    risk 0.00cvss epss 0.02

    Unspecified vulnerability in Sun Solaris 10 and OpenSolaris before snv_96 allows (1) context-dependent attackers to cause a denial of service (panic) via vectors involving creation of a crafted file and use of the sendfilev system call, as demonstrated by a file served by an…

  • CVE-2008-0965Aug 8, 2008
    risk 0.00cvss epss 0.06

    Multiple format string vulnerabilities in snoop on Sun Solaris 8 through 10 and OpenSolaris before snv_96, when the -o option is omitted, allow remote attackers to execute arbitrary code via format string specifiers in an SMB packet.

  • CVE-2008-3549Aug 7, 2008
    risk 0.00cvss epss 0.00

    Unspecified vulnerability in the pthread_mutex_reltimedlock_np API in Sun Solaris 10 and OpenSolaris before snv_90 allows local users to cause a denial of service (system hang or panic) via unknown vectors.

  • CVE-2008-3450Aug 4, 2008
    risk 0.00cvss epss 0.00

    Unspecified vulnerability in the namefs kernel module in Sun Solaris 8 through 10 allows local users to gain privileges or cause a denial of service (panic) via unspecified vectors.

  • CVE-2008-3426Jul 31, 2008
    risk 0.00cvss epss 0.00

    Unspecified vulnerability in the Solaris Platform Information and Control Library daemon (picld) in Sun Solaris 8 through 10, and OpenSolaris builds snv_01 through snv_95, allows local users to cause a denial of service via unknown vectors that prevent operation of utilities…

  • CVE-2008-2946Jun 30, 2008
    risk 0.00cvss epss 0.03

    The SNMP-DMI mapper subagent daemon (aka snmpXdmid) in Solstice Enterprise Agents in Sun Solaris 8 through 10 allows remote attackers to cause a denial of service (daemon crash) via malformed packets.

Page 11 of 25