VYPR

Sunos

by Sun Corporation

CVEs (563)

  • CVE-2010-3586Jan 19, 2011
    risk 0.00cvss epss 0.00

    Unspecified vulnerability in Oracle Solaris 9 allows local users to affect confidentiality and integrity via unknown vectors related to XScreenSaver.

  • CVE-2009-4191Dec 3, 2009
    risk 0.00cvss epss 0.00

    Unspecified vulnerability in the kernel in Sun Solaris 10 and OpenSolaris 2009.06 on the x86-64 platform allows local users to gain privileges via unknown vectors, as demonstrated by the vd_sol_local module in VulnDisco Pack Professional 8.12. NOTE: as of 20091203, this…

  • CVE-2009-4080Nov 29, 2009
    risk 0.00cvss epss 0.00

    Multiple unspecified vulnerabilities in ldap_cachemgr (aka the LDAP client configuration cache daemon) in Sun Solaris 9 and 10, and OpenSolaris before snv_78, allow local users to cause a denial of service (daemon crash) via vectors involving multiple serviceSearchDescriptor…

  • CVE-2009-0873Mar 11, 2009
    risk 0.00cvss epss 0.02

    The NFS daemon (aka nfsd) in Sun Solaris 10 and OpenSolaris before snv_106, when NFSv3 is used, does not properly implement combinations of security modes, which allows remote attackers to bypass intended access restrictions and read or modify files, as demonstrated by a…

  • CVE-2009-0838Mar 6, 2009
    risk 0.00cvss epss 0.00

    The crypto pseudo device driver in Sun Solaris 10, and OpenSolaris snv_88 through snv_102, does not properly free memory, which allows local users to cause a denial of service (panic) via unspecified vectors, related to the vmem_hash_delete function.

  • CVE-2008-5550Dec 12, 2008
    risk 0.00cvss epss 0.02

    Open redirect vulnerability in console/faces/jsp/login/BeginLogin.jsp in Sun Java Web Console 3.0.2 through 3.0.5 and Solaris 10 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via the redirect_url parameter.

  • CVE-2008-3666Aug 13, 2008
    risk 0.00cvss epss 0.02

    Unspecified vulnerability in Sun Solaris 10 and OpenSolaris before snv_96 allows (1) context-dependent attackers to cause a denial of service (panic) via vectors involving creation of a crafted file and use of the sendfilev system call, as demonstrated by a file served by an…

  • CVE-2008-0965Aug 8, 2008
    risk 0.00cvss epss 0.06

    Multiple format string vulnerabilities in snoop on Sun Solaris 8 through 10 and OpenSolaris before snv_96, when the -o option is omitted, allow remote attackers to execute arbitrary code via format string specifiers in an SMB packet.

  • CVE-2008-3450Aug 4, 2008
    risk 0.00cvss epss 0.00

    Unspecified vulnerability in the namefs kernel module in Sun Solaris 8 through 10 allows local users to gain privileges or cause a denial of service (panic) via unspecified vectors.

  • CVE-2008-3426Jul 31, 2008
    risk 0.00cvss epss 0.00

    Unspecified vulnerability in the Solaris Platform Information and Control Library daemon (picld) in Sun Solaris 8 through 10, and OpenSolaris builds snv_01 through snv_95, allows local users to cause a denial of service via unknown vectors that prevent operation of utilities…

  • CVE-2008-2946Jun 30, 2008
    risk 0.00cvss epss 0.03

    The SNMP-DMI mapper subagent daemon (aka snmpXdmid) in Solstice Enterprise Agents in Sun Solaris 8 through 10 allows remote attackers to cause a denial of service (daemon crash) via malformed packets.

  • CVE-2008-2710Jun 16, 2008
    risk 0.00cvss epss 0.01

    Integer signedness error in the ip_set_srcfilter function in the IP Multicast Filter in uts/common/inet/ip/ip_multi.c in the kernel in Sun Solaris 10 and OpenSolaris before snv_92 allows local users to execute arbitrary code in other Solaris Zones via an SIOCSIPMSFILTER IOCTL…

  • CVE-2008-2708Jun 16, 2008
    risk 0.00cvss epss 0.00

    Unspecified vulnerability in the Sun (1) UltraSPARC T2 and (2) UltraSPARC T2+ kernel modules in Sun Solaris 10, and OpenSolaris before snv_93, allows local users to cause a denial of service (panic) via unspecified vectors, probably related to core files.

  • CVE-2008-2121May 9, 2008
    risk 0.00cvss epss 0.02

    The TCP implementation in Sun Solaris 8, 9, and 10 allows remote attackers to cause a denial of service (CPU consumption and new connection timeouts) via a TCP SYN flood attack.

  • CVE-2008-1778Apr 14, 2008
    risk 0.00cvss epss 0.00

    Unspecified vulnerability in the floating point context switch implementation in Sun Solaris 9 and 10 on x86 platforms might allow local users to cause a denial of service (application exit), corrupt data, or trigger incorrect calculations via unknown vectors.

  • CVE-2008-1369Mar 18, 2008
    risk 0.00cvss epss 0.03

    A certain incorrect Sun Solaris 10 image on SPARC Enterprise T5120 and T5220 servers has /etc/default/login and /etc/ssh/sshd_config files that configure root logins in a manner unintended by the vendor, which allows remote attackers to gain privileges via unspecified vectors.

  • CVE-2008-1095Feb 29, 2008
    risk 0.00cvss epss 0.02

    Unspecified vulnerability in the Internet Protocol (IP) implementation in Sun Solaris 8, 9, and 10 allows remote attackers to bypass intended firewall policies or cause a denial of service (panic) via unknown vectors, possibly related to ICMP packets and IP fragment reassembly.

  • CVE-2008-0269Jan 15, 2008
    risk 0.00cvss epss 0.00

    Unspecified vulnerability in the dotoprocs function in Sun Solaris 10 allows local users to cause a denial of service (panic) via unspecified vectors.

  • CVE-2007-6216Dec 4, 2007
    risk 0.00cvss epss 0.00

    Race condition in the Fibre Channel protocol (fcp) driver and Devices filesystem (devfs) in Sun Solaris 10 allows local users to cause a denial of service (system hang) via some programs that access hardware resources, as demonstrated by the (1) cfgadm and (2) format programs.

  • CVE-2007-5921Nov 10, 2007
    risk 0.00cvss epss 0.00

    Unspecified vulnerability in the ioctl interface in the Solaris Volume Manager (SVM) in Sun Solaris 9 and 10 allows local users to cause a denial of service (panic) via unspecified vectors, a different vulnerability than CVE-2004-1346.

Page 17 of 29