VYPR

Solaris

by Sun Corporation

CVEs (499)

  • CVE-2006-5396Oct 18, 2006
    risk 0.00cvss epss 0.00

    The tcp_fuse_rcv_drain function in the Sun Solaris 10 kernel before 20061017, when TCP Fusion is enabled, allows local users to cause a denial of service (system crash) via a TCP loopback connection with both endpoints on the same system.

  • CVE-2006-5214Oct 10, 2006
    risk 0.00cvss epss 0.00

    Race condition in the Xsession script, as used by X Display Manager (xdm) in NetBSD before 20060212, X.Org before 20060225, and Solaris 8 through 10 before 20061006, causes a user's Xsession errors file to have weak permissions before a chmod is performed, which allows local…

  • CVE-2006-5201Oct 10, 2006
    risk 0.00cvss epss 0.03

    Multiple packages on Sun Solaris, including (1) NSS; (2) Java JDK and JRE 5.0 Update 8 and earlier, SDK and JRE 1.4.x up to 1.4.2_12, and SDK and JRE 1.3.x up to 1.3.1_19; (3) JSSE 1.0.3_03 and earlier; (4) IPSec/IKE; (5) Secure Global Desktop; and (6) StarOffice, when using an…

  • CVE-2006-5213Oct 10, 2006
    risk 0.00cvss epss 0.00

    Sun Solaris 10 before 20061006 uses "incorrect and insufficient permission checks" that allow local users to intercept or spoof packets by creating a raw socket on a link aggregation (network device aggregation).

  • CVE-2006-5215Oct 10, 2006
    risk 0.00cvss epss 0.00

    The Xsession script, as used by X Display Manager (xdm) in NetBSD before 20060212, X.Org before 20060317, and Solaris 8 through 10 before 20061006, allows local users to overwrite arbitrary files, or read another user's Xsession errors file, via a symlink attack on a…

  • CVE-2006-5075Sep 29, 2006
    risk 0.00cvss epss 0.03

    The Kernel SSL Proxy service (svc:/network/ssl/proxy) in Sun Solaris 10 before 20060926 allows remote attackers to cause a denial of service (system crash) via unspecified vectors related to an SSL client.

  • CVE-2006-5073Sep 29, 2006
    risk 0.00cvss epss 0.03

    Unspecified vulnerability in Sun Solaris 8, 9 and 10 allows remote attackers to cause a denial of service (panic) via crafted IPv6 packets, a different vulnerability than CVE-2006-5013.

  • CVE-2006-5013Sep 27, 2006
    risk 0.00cvss epss 0.03

    Sun Solaris 10 before patch 118855-16 (20060925), when run on x64 systems using IPv6, allows remote attackers to cause a denial of service (kernel panic) via crafted IPv6 packets.

  • CVE-2006-5012Sep 27, 2006
    risk 0.00cvss epss 0.00

    Unspecified vulnerability in Sun Solaris 8, 9, and 10 before 20060925 allows local users to cause a denial of service (disable syslog) and prevent security messages from being logged via unspecified vectors.

  • CVE-2006-4439Aug 29, 2006
    risk 0.00cvss epss 0.00

    pkgadd in Sun Solaris 10 before 20060825 installs files with insecure file and directory permissions (755 or 777) if the pkgmap file contains a "?" (question mark) in the mode field, which allows local users to modify arbitrary files or directories, a different vulnerability…

  • CVE-2006-4319Aug 24, 2006
    risk 0.00cvss epss 0.00

    Buffer overflow in the format command in Solaris 8, 9, and 10 allows local users with access to format (such as the "File System Management" RBAC profile) to execute arbitrary code via unknown vectors, a different vulnerability than CVE-2006-4307.

  • CVE-2006-4307Aug 23, 2006
    risk 0.00cvss epss 0.00

    Unspecified vulnerability in the format command in Sun Solaris 8 and 9 before 20060821 allows local users to modify arbitrary files via unspecified vectors involving profiles that permit running format with elevated privileges, a different issue than CVE-2006-4306 and…

  • CVE-2006-4306Aug 23, 2006
    risk 0.00cvss epss 0.00

    Unspecified vulnerability in Sun Solaris 8 and 9 before 20060821 allows local users to execute arbitrary commands via unspecified vectors, involving the default Role-Based Access Control (RBAC) settings in the "File System Management" profile.

  • CVE-2006-4303Aug 23, 2006
    risk 0.00cvss epss 0.01

    Race condition in (1) libnsl and (2) TLI/XTI API routines in Sun Solaris 10 allows remote attackers to cause a denial of service ("tight loop" and CPU consumption for listener applications) via unknown vectors related to TCP fusion (do_tcp_fusion).

  • CVE-2006-4139Aug 14, 2006
    risk 0.00cvss epss 0.01

    Race condition in Sun Solaris 10 allows attackers to cause a denial of service (system panic) via unspecified vectors related to ifconfig and either netstat or SNMP queries.

  • CVE-2006-4117Aug 14, 2006
    risk 0.00cvss epss 0.01

    The squeue_drain function in Sun Solaris 10, possibly only when run on CMT processors, allows remote attackers to cause a denial of service ("bad trap" and system panic) by opening and closing a large number of TCP connections ("heavy TCP/IP loads"). NOTE: the original report…

  • CVE-2006-3968Aug 1, 2006
    risk 0.00cvss epss 0.01

    The crypto provider in Sun Solaris 10 3/05 HW2 without patch 121236-01, when running on Sun Fire T2000 platforms, incorrectly verifies a DSA signature, which might prevent applications from detecting that the data has been modified.

  • CVE-2006-3920Jul 28, 2006
    risk 0.00cvss epss 0.03

    The TCP implementation in Sun Solaris 8, 9, and 10 before 20060726 allows remote attackers to cause a denial of service (resource exhaustion) via a TCP packet with an incorrect sequence number, which triggers an ACK storm.

  • CVE-2006-3825Jul 25, 2006
    risk 0.00cvss epss 0.00

    The IPv4 implementation in Sun Solaris 10 before 20060721 allows local users to select routes that differ from the routing table, possibly facilitating firewall bypass or unauthorized network communication.

  • CVE-2006-3781Jul 24, 2006
    risk 0.00cvss epss 0.02

    Unspecified vulnerability in Sun Solaris 10 allows context-dependent attackers to cause a denial of service (panic) via unspecified vectors involving the event port API.

Page 16 of 25