Solaris
CVEs (499)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2006-3782 | 0.00 | — | 0.00 | Jul 24, 2006 | Unspecified vulnerability in the kernel debugger (kmdb) in Sun Solaris 10, when running on x86, allows local users to cause a denial of service (system hang) via unspecified vectors. | |||
| CVE-2006-3783 | 0.00 | — | 0.00 | Jul 24, 2006 | Sun Solaris 10 allows local users to cause a denial of service (panic) via unspecified vectors involving (1) the /net mount point and (2) the "-hosts" map in a mount point. | |||
| CVE-2006-3728 | 0.00 | — | 0.02 | Jul 21, 2006 | Unspecified vulnerability in the kernel in Solaris 10 with patch 118822-29 (118844-29 on x86) and without patch 118833-11 (118855-08) allows remote authenticated users to cause a denial of service via unspecified vectors that lead to "kernel data structure corruption" that can… | |||
| CVE-2006-3664 | 0.00 | — | 0.03 | Jul 18, 2006 | Unspecified vulnerability in NIS server on Sun Solaris 8, 9, and 10 allows local and remote attackers to cause a denial of service (ypserv hang) via unknown vectors. | |||
| CVE-2006-3606 | 0.00 | — | 0.02 | Jul 18, 2006 | Unspecified vulnerability in Sun Solaris X Inter Client Exchange library (libICE) on Solaris 8 and 9 allows context-dependent attackers to cause a denial of service (application crash) to applications that use the library. | |||
| CVE-2006-2298 | 0.00 | — | 0.03 | May 10, 2006 | The Internet Key Exchange version 1 (IKEv1) implementation in the libike library in Solaris 9 and 10 allows remote attackers to cause a denial of service (in.iked daemon crash) via crafted IKE packets, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1. | |||
| CVE-2006-2064 | 0.00 | — | 0.00 | Apr 27, 2006 | Unspecified vulnerability in the libpkcs11 library in Sun Solaris 10 might allow local users to gain privileges or cause a denial of service (application failure) via unknown attack vectors that involve the getpwnam family of non-reentrant functions. | |||
| CVE-2006-1782 | 0.00 | — | 0.00 | Apr 13, 2006 | Unspecified vulnerability in Solaris 8 and 9 allows local users to obtain the LDAP Directory Server root Distinguished Name (rootDN) password when a privileged user (1) runs idsconfig; or "insecurely" runs LDAP2 commands with the -w option, including (2) ldapadd, (3) ldapdelete,… | |||
| CVE-2006-1780 | 0.00 | — | 0.00 | Apr 13, 2006 | The Bourne shell (sh) in Solaris 8, 9, and 10 allows local users to cause a denial of service (sh crash) via an unspecified attack vector that causes sh processes to crash during creation of temporary files. | |||
| CVE-2006-1092 | 0.00 | — | 0.00 | Mar 9, 2006 | Unspecified vulnerability in the pagedata subsystem of the process file system (/proc) in Solaris 8 through 10 allows local users to cause a denial of service (system hang or panic) via unknown attack vectors that cause cause the kmem_oversize arena to allocate a large amount of… | |||
| CVE-2006-0901 | 0.00 | — | 0.00 | Feb 27, 2006 | Unspecified vulnerability in the hsfs filesystem in Solaris 8, 9, and 10 allows unspecified attackers to cause a denial of service (panic) or execute arbitrary code. | |||
| CVE-2006-0769 | 0.00 | — | 0.00 | Feb 18, 2006 | Unspecified vulnerability in in.rexecd in Solaris 10 allows local users to gain privileges on Kerberos systems via unknown attack vectors. | |||
| CVE-2006-0516 | 0.00 | — | 0.00 | Feb 2, 2006 | Unspecified vulnerability in the kernel processing in Solaris 10 64 bit platform, when running in 64-bit mode, allows local users to cause a denial of service (system panic) via unknown attack vectors. | |||
| CVE-2006-0227 | 0.00 | — | 0.00 | Jan 17, 2006 | Multiple unspecified vulnerabilities in lpsched in Sun Solaris 8, 9, and 10 allow local users to delete arbitrary files or disable the LP print service via unknown attack vectors. | |||
| CVE-2006-0191 | 0.00 | — | 0.00 | Jan 13, 2006 | Unspecified vulnerability in Sun Solaris 10 allows local users to cause a denial of service (null dereference) via unspecified vectors involving the use of the find command on the "/proc" filesystem. NOTE: due to the vagueness of the vendor advisory, it is not clear whether this… | |||
| CVE-2006-0190 | 0.00 | — | 0.00 | Jan 13, 2006 | Unspecified vulnerability in Sun Solaris 9 and 10 for the x86 platform allows local users to gain privileges or cause a denial of service (panic) via unspecified vectors, possibly involving functions from the mm driver. | |||
| CVE-2006-0161 | 0.00 | — | 0.00 | Jan 10, 2006 | Unspecified vulnerability in uucp in Sun Solaris 8 and 9 has unknown impact and attack vectors. NOTE: due to the vagueness of the vendor advisory, it is not clear whether this is related to CVE-2004-0780. | |||
| CVE-2005-4795 | 0.00 | — | 0.00 | Dec 31, 2005 | Unspecified vulnerability in the multi-language environment library (libmle) in Solaris 7 and 8, as shipped with the Japanese locale, allows local users to gain privileges via unknown attack vectors. | |||
| CVE-2005-4706 | 0.00 | — | 0.00 | Dec 31, 2005 | Unspecified vulnerability in the "privilege management" feature of Sun Solaris 10 allows local users to cause a denial of service (panic) via unknown vectors that trigger a null dereference in the secpolicy_fs_common function. | |||
| CVE-2005-4701 | 0.00 | — | 0.00 | Dec 31, 2005 | Unspecified vulnerability in Process File System (procfs) in Sun Solaris 10 allows local users to obtain sensitive information such as process working directories via unknown attack vectors, possibly pwdx. |
- CVE-2006-3782Jul 24, 2006risk 0.00cvss —epss 0.00
Unspecified vulnerability in the kernel debugger (kmdb) in Sun Solaris 10, when running on x86, allows local users to cause a denial of service (system hang) via unspecified vectors.
- CVE-2006-3783Jul 24, 2006risk 0.00cvss —epss 0.00
Sun Solaris 10 allows local users to cause a denial of service (panic) via unspecified vectors involving (1) the /net mount point and (2) the "-hosts" map in a mount point.
- CVE-2006-3728Jul 21, 2006risk 0.00cvss —epss 0.02
Unspecified vulnerability in the kernel in Solaris 10 with patch 118822-29 (118844-29 on x86) and without patch 118833-11 (118855-08) allows remote authenticated users to cause a denial of service via unspecified vectors that lead to "kernel data structure corruption" that can…
- CVE-2006-3664Jul 18, 2006risk 0.00cvss —epss 0.03
Unspecified vulnerability in NIS server on Sun Solaris 8, 9, and 10 allows local and remote attackers to cause a denial of service (ypserv hang) via unknown vectors.
- CVE-2006-3606Jul 18, 2006risk 0.00cvss —epss 0.02
Unspecified vulnerability in Sun Solaris X Inter Client Exchange library (libICE) on Solaris 8 and 9 allows context-dependent attackers to cause a denial of service (application crash) to applications that use the library.
- CVE-2006-2298May 10, 2006risk 0.00cvss —epss 0.03
The Internet Key Exchange version 1 (IKEv1) implementation in the libike library in Solaris 9 and 10 allows remote attackers to cause a denial of service (in.iked daemon crash) via crafted IKE packets, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1.
- CVE-2006-2064Apr 27, 2006risk 0.00cvss —epss 0.00
Unspecified vulnerability in the libpkcs11 library in Sun Solaris 10 might allow local users to gain privileges or cause a denial of service (application failure) via unknown attack vectors that involve the getpwnam family of non-reentrant functions.
- CVE-2006-1782Apr 13, 2006risk 0.00cvss —epss 0.00
Unspecified vulnerability in Solaris 8 and 9 allows local users to obtain the LDAP Directory Server root Distinguished Name (rootDN) password when a privileged user (1) runs idsconfig; or "insecurely" runs LDAP2 commands with the -w option, including (2) ldapadd, (3) ldapdelete,…
- CVE-2006-1780Apr 13, 2006risk 0.00cvss —epss 0.00
The Bourne shell (sh) in Solaris 8, 9, and 10 allows local users to cause a denial of service (sh crash) via an unspecified attack vector that causes sh processes to crash during creation of temporary files.
- CVE-2006-1092Mar 9, 2006risk 0.00cvss —epss 0.00
Unspecified vulnerability in the pagedata subsystem of the process file system (/proc) in Solaris 8 through 10 allows local users to cause a denial of service (system hang or panic) via unknown attack vectors that cause cause the kmem_oversize arena to allocate a large amount of…
- CVE-2006-0901Feb 27, 2006risk 0.00cvss —epss 0.00
Unspecified vulnerability in the hsfs filesystem in Solaris 8, 9, and 10 allows unspecified attackers to cause a denial of service (panic) or execute arbitrary code.
- CVE-2006-0769Feb 18, 2006risk 0.00cvss —epss 0.00
Unspecified vulnerability in in.rexecd in Solaris 10 allows local users to gain privileges on Kerberos systems via unknown attack vectors.
- CVE-2006-0516Feb 2, 2006risk 0.00cvss —epss 0.00
Unspecified vulnerability in the kernel processing in Solaris 10 64 bit platform, when running in 64-bit mode, allows local users to cause a denial of service (system panic) via unknown attack vectors.
- CVE-2006-0227Jan 17, 2006risk 0.00cvss —epss 0.00
Multiple unspecified vulnerabilities in lpsched in Sun Solaris 8, 9, and 10 allow local users to delete arbitrary files or disable the LP print service via unknown attack vectors.
- CVE-2006-0191Jan 13, 2006risk 0.00cvss —epss 0.00
Unspecified vulnerability in Sun Solaris 10 allows local users to cause a denial of service (null dereference) via unspecified vectors involving the use of the find command on the "/proc" filesystem. NOTE: due to the vagueness of the vendor advisory, it is not clear whether this…
- CVE-2006-0190Jan 13, 2006risk 0.00cvss —epss 0.00
Unspecified vulnerability in Sun Solaris 9 and 10 for the x86 platform allows local users to gain privileges or cause a denial of service (panic) via unspecified vectors, possibly involving functions from the mm driver.
- CVE-2006-0161Jan 10, 2006risk 0.00cvss —epss 0.00
Unspecified vulnerability in uucp in Sun Solaris 8 and 9 has unknown impact and attack vectors. NOTE: due to the vagueness of the vendor advisory, it is not clear whether this is related to CVE-2004-0780.
- CVE-2005-4795Dec 31, 2005risk 0.00cvss —epss 0.00
Unspecified vulnerability in the multi-language environment library (libmle) in Solaris 7 and 8, as shipped with the Japanese locale, allows local users to gain privileges via unknown attack vectors.
- CVE-2005-4706Dec 31, 2005risk 0.00cvss —epss 0.00
Unspecified vulnerability in the "privilege management" feature of Sun Solaris 10 allows local users to cause a denial of service (panic) via unknown vectors that trigger a null dereference in the secpolicy_fs_common function.
- CVE-2005-4701Dec 31, 2005risk 0.00cvss —epss 0.00
Unspecified vulnerability in Process File System (procfs) in Sun Solaris 10 allows local users to obtain sensitive information such as process working directories via unknown attack vectors, possibly pwdx.
Page 17 of 25