Lucene search
K
Database
Vendors
Products
Timeline
Vulnerabilities
Perimeter Scanner
Scanning
Projects
Scanner
Agent Scanning
API Scanning
Manual Audit
Email
Webhook
Resources
Documents
Blog
Glossary
FAQ
Plugins
Pricing
Contacts
About Us
Partners
Branding Guideline
Settings
Sign in
SunSolaris10

78 matches found

CVE
CVEadded 2008/03/08 12:44 a.m.38 views

CVE-2008-1205

Unspecified vulnerability in the ipsecah kernel module in Sun Solaris 10, when a key management daemon for IPsec security associations is running, allows local users to cause a denial of service (panic) via unspecified vectors.

4.9CVSS6.2AI score0.00045EPSS
CVE
CVEadded 2008/09/19 5:15 p.m.38 views

CVE-2008-4131

Multiple unspecified vulnerabilities in Sun Solaris 8 through 10 allow local users to gain privileges via vectors related to handling of tags with (1) the -t option and (2) the :tag command in the (a) vi, (b) ex, (c) vedit, (d) view, and (e) edit programs.

7.2CVSS6.5AI score0.00227EPSS
CVE
CVEadded 2008/11/17 11:30 p.m.38 views

CVE-2008-5111

Unspecified vulnerability in the socket function in Sun Solaris 10 and OpenSolaris snv_57 through snv_91, when InfiniBand hardware is not installed, allows local users to cause a denial of service (panic) via unknown vectors, related to the socksdpv_close function.

4.7CVSS6.3AI score0.00061EPSS
CVE
CVEadded 2009/03/11 2:19 p.m.38 views

CVE-2009-0872

The NFS server in Sun Solaris 10, and OpenSolaris before snv_111, does not properly implement the AUTH_NONE (aka sec=none) security mode in combination with other security modes, which allows remote attackers to bypass intended access restrictions and read or modify files, as demonstrated by a comb...

6.8CVSS6.6AI score0.00816EPSS
CVE
CVEadded 2009/07/16 4:30 p.m.38 views

CVE-2009-2487

Use-after-free vulnerability in the frpr_icmp function in the ipfilter (aka IP Filter) subsystem in Sun Solaris 10, and OpenSolaris snv_45 through snv_110, allows remote attackers to cause a denial of service (panic) via unspecified vectors.

7.8CVSS6.5AI score0.02269EPSS
CVE
CVEadded 2008/02/12 9:0 p.m.37 views

CVE-2008-0730

The (1) Simplified Chinese, (2) Traditional Chinese, (3) Korean, and (4) Thai language input methods in Sun Solaris 10 create files and directories with weak permissions under (a) .iiim/le and (b) .Xlocale in home directories, which might allow local users to write to, or read from, the home direct...

4.6CVSS6.3AI score0.00077EPSS
CVE
CVEadded 2008/08/07 9:41 p.m.37 views

CVE-2008-3549

Unspecified vulnerability in the pthread_mutex_reltimedlock_np API in Sun Solaris 10 and OpenSolaris before snv_90 allows local users to cause a denial of service (system hang or panic) via unknown vectors.

4.7CVSS6.1AI score0.00061EPSS
CVE
CVEadded 2009/01/16 9:30 p.m.37 views

CVE-2009-0168

Unspecified vulnerability in ppdmgr in Sun Solaris 10 and OpenSolaris snv_61 through snv_106 allows local users to cause a denial of service via unspecified vectors, related to a failure to "include all cache files," and improper handling of temporary files.

4.9CVSS6.3AI score0.00062EPSS
CVE
CVEadded 2009/06/19 7:30 p.m.37 views

CVE-2009-2137

Memory leak in the Ultra-SPARC T2 crypto provider device driver (aka n2cp) in Sun Solaris 10, and OpenSolaris snv_54 through snv_112, allows context-dependent attackers to cause a denial of service (memory consumption) via unspecified vectors related to a large keylen value.

7.8CVSS6.6AI score0.00496EPSS
CVE
CVEadded 2008/02/12 2:0 a.m.36 views

CVE-2008-0718

Unspecified vulnerability in the USB Mouse STREAMS module (usbms) in Sun Solaris 9 and 10, when 64-bit mode is enabled, allows local users to cause a denial of service (panic) via unspecified vectors.

4.7CVSS6.1AI score0.00045EPSS
CVE
CVEadded 2008/02/29 11:44 a.m.36 views

CVE-2008-1095

Unspecified vulnerability in the Internet Protocol (IP) implementation in Sun Solaris 8, 9, and 10 allows remote attackers to bypass intended firewall policies or cause a denial of service (panic) via unknown vectors, possibly related to ICMP packets and IP fragment reassembly.

6.8CVSS6.8AI score0.00723EPSS
CVE
CVEadded 2009/03/16 5:30 p.m.36 views

CVE-2009-0913

Unspecified vulnerability in the keysock kernel module in Solaris 10 and OpenSolaris builds snv_01 through snv_108 allows local users to cause a denial of service (system panic) via unknown vectors related to PF_KEY socket, probably related to setting socket options.

4.7CVSS6.1AI score0.0006EPSS
CVE
CVEadded 2008/04/14 4:5 p.m.35 views

CVE-2008-1779

Sun Solaris 8, 9, and 10 allows "remote privileged" users to cause a denial of service (panic) via unknown vectors related to self encapsulated IP packets.

6.8CVSS6.3AI score0.01379EPSS
CVE
CVEadded 2008/06/03 3:32 p.m.35 views

CVE-2008-2538

Unspecified vulnerability in crontab on Sun Solaris 8 through 10, and OpenSolaris before snv_93, allows local users to insert cron jobs into the crontab files of arbitrary users via unspecified vectors.

6.9CVSS6.2AI score0.00036EPSS
CVE
CVEadded 2008/08/27 8:41 p.m.35 views

CVE-2008-3838

Unspecified vulnerability in the NFS Remote Procedure Calls (RPC) zones implementation in Sun Solaris 10 and OpenSolaris before snv_88 allows local administrators of non-global zones to read and modify NFS traffic for arbitrary non-global zones, possibly leading to file modifications or a denial of...

7.2CVSS6.6AI score0.00063EPSS
CVE
CVEadded 2009/06/11 3:30 p.m.35 views

CVE-2009-2029

Unspecified vulnerability in rpc.nisd in Sun Solaris 8 through 10, and OpenSolaris before snv_104, allows remote authenticated users to cause a denial of service (NIS+ daemon hang) via unspecified vectors related to NIS+ callbacks.

5CVSS6.1AI score0.00742EPSS
CVE
CVEadded 2009/11/25 6:30 p.m.35 views

CVE-2009-4075

Unspecified vulnerability in the timeout mechanism in sshd in Sun Solaris 10, and OpenSolaris snv_99 through snv_123, allows remote attackers to cause a denial of service (daemon outage) via unknown vectors that trigger a "dangling sshd authentication thread."

5CVSS6.6AI score0.0183EPSS
CVE
CVEadded 2008/03/13 2:44 p.m.34 views

CVE-2008-1317

Unspecified vulnerability in the Inter-Process Communication (IPC) message queue subsystem in Sun Solaris 10 allows local users to cause a denial of service (reboot) via blocked I/O message queues.

4.9CVSS6.2AI score0.00045EPSS
CVE
CVEadded 2008/06/16 6:41 p.m.34 views

CVE-2008-2706

Unspecified vulnerability in the event port implementation in Sun Solaris 10 allows local users to cause a denial of service (panic) by submitting and retrieving user-defined events, probably related to a NULL dereference.

4.9CVSS6.2AI score0.00061EPSS
CVE
CVEadded 2008/04/14 4:5 p.m.33 views

CVE-2008-1780

Unspecified vulnerability in the labeled networking functionality in Solaris 10 Trusted Extensions allows applications in separate labeling zones to bypass labeling restrictions via unknown vectors.

4.6CVSS6.5AI score0.00073EPSS
CVE
CVEadded 2008/09/02 2:24 p.m.33 views

CVE-2008-3875

The kernel in Sun Solaris 8 through 10 and OpenSolaris before snv_90 allows local users to bypass chroot, zones, and the Solaris Trusted Extensions multi-level security policy, and establish a covert communication channel, via unspecified vectors involving system calls.

7.2CVSS6AI score0.00064EPSS
CVE
CVEadded 2007/12/17 11:46 p.m.32 views

CVE-2007-6413

Sun Solaris 10 with the 120011-04 and 120012-04 patches, and later 120011-* and 120012-* patches, allows remote attackers to bypass certain netgroup restrictions and obtain root access to a filesystem via NFS requests from a client root user.

9.3CVSS6.7AI score0.00837EPSS
CVE
CVEadded 2008/02/20 9:44 p.m.32 views

CVE-2008-0836

Unspecified vulnerability in the vuidmice STREAMS modules in Sun Solaris 9 and 10 on x86 architectures allows local users to cause a denial of service (panic) via unspecified vectors that trigger a NULL pointer dereference in the vuid3ps2 module, a different issue than CVE-2007-5319.

4.9CVSS6.2AI score0.0061EPSS
CVE
CVEadded 2008/04/06 11:44 p.m.32 views

CVE-2008-1684

inetd on Sun Solaris 10, when debug logging is enabled, allows local users to write to arbitrary files via a symlink attack on the /var/tmp/inetd.log temporary file.

4.7CVSS6.3AI score0.00022EPSS
CVE
CVEadded 2009/11/02 3:30 p.m.32 views

CVE-2009-3839

Unspecified vulnerability in the Solaris Trusted Extensions Policy configuration in Sun Solaris 10, and OpenSolaris snv_37 through snv_125, might allow remote attackers to execute arbitrary code by leveraging access to the X server.

6.8CVSS7.7AI score0.01456EPSS
CVE
CVEadded 2008/02/25 6:44 p.m.29 views

CVE-2008-0938

Unspecified vulnerability in the dynamic tracing framework (DTrace) in Sun Solaris 10 allows local users with PRIV_DTRACE_USER or PRIV_DTRACE_PROC privileges to obtain sensitive kernel information via unspecified vectors, a different vulnerability than CVE-2007-4126.

4.7CVSS5.7AI score0.00059EPSS
CVE
CVEadded 2008/08/13 5:41 p.m.29 views

CVE-2008-3666

Unspecified vulnerability in Sun Solaris 10 and OpenSolaris before snv_96 allows (1) context-dependent attackers to cause a denial of service (panic) via vectors involving creation of a crafted file and use of the sendfilev system call, as demonstrated by a file served by an Apache 2.2.x web server...

7.1CVSS6.1AI score0.00877EPSS
CVE
CVEadded 2008/09/22 6:52 p.m.26 views

CVE-2008-4160

Unspecified vulnerability in the UFS module in Sun Solaris 8 through 10 and OpenSolaris allows local users to cause a denial of service (NULL pointer dereference and kernel panic) via unknown vectors related to the Solaris Access Control List (ACL) implementation.

4.7CVSS5.9AI score0.00058EPSS
Total number of security vulnerabilities78