Lucene search
K
Database
Vendors
Products
Timeline
Vulnerabilities
Perimeter Scanner
Scanning
Projects
Scanner
Agent Scanning
API Scanning
Manual Audit
Email
Webhook
Resources
Documents
Blog
Glossary
FAQ
Plugins
Pricing
Contacts
About Us
Partners
Branding Guideline
Settings
Sign in
SunSolaris8.0

130 matches found

CVE
CVEadded 2005/05/02 4:0 a.m.39 views

CVE-2005-0248

The Solaris Management Console (SMC) GUI for Solaris 8 and 9, when creating user accounts that are configured for password aging, creates the accounts with a blank password, which allows remote or local attackers to break into those accounts.

7.5CVSS7.1AI score0.00567EPSS
CVE
CVEadded 2006/05/05 10:0 p.m.39 views

CVE-2005-4796

Unspecified vulnerability in the XView library (libxview.so) in Solaris 2.5 to 10 allows local users to corrupt files via unknown vectors related to the handling of the clipboard selection while an XView application exits.

3.6CVSS5.8AI score0.00073EPSS
CVE
CVEadded 2006/08/23 7:4 p.m.39 views

CVE-2006-4307

Unspecified vulnerability in the format command in Sun Solaris 8 and 9 before 20060821 allows local users to modify arbitrary files via unspecified vectors involving profiles that permit running format with elevated privileges, a different issue than CVE-2006-4306 and CVE-2006-4319.

7.2CVSS6.2AI score0.0007EPSS
CVE
CVEadded 2007/09/27 5:17 p.m.39 views

CVE-2007-5118

Unspecified vulnerability in the HID (Human Interface Device) class driver in Sun Solaris 8, 9, and 10 before 20070925 allows local users to cause a denial of service (panic) via unspecified vectors.

4.7CVSS6AI score0.0006EPSS
CVE
CVEadded 2000/01/04 5:0 a.m.38 views

CVE-1999-0982

The Sun Web-Based Enterprise Management (WBEM) installation script stores a password in plaintext in a world readable file.

7.2CVSS7.1AI score0.00067EPSS
CVE
CVEadded 2005/02/08 5:0 a.m.38 views

CVE-2002-1589

Unknown vulnerability in Solaris 8, when the 0x02 bit (aka TEST, KMF_DEADBEEF, or deadbeef) is set in the kmem_flags kernel parameter, allows local users to cause a denial of service (system panic).

2.1CVSS6.5AI score0.00065EPSS
CVE
CVEadded 2005/02/08 5:0 a.m.38 views

CVE-2002-1590

The Web-Based Enterprise Management (WBEM) packages (1) SUNWwbdoc, (2) SUNWwbcou, (3) SUNWwbdev and (4) SUNWmgapp packages, when installed using Solaris 8 Update 1/01 or later, install files with world or group write permissions, which allows local users to gain root privileges or cause a denial of...

7.2CVSS7AI score0.00037EPSS
CVE
CVEadded 2005/02/08 5:0 a.m.38 views

CVE-2003-1079

Unknown vulnerability in UDP RPC for Solaris 2.5.1 through 9 for SPARC, and 2.5.1 through 8 for x86, allows remote attackers to cause a denial of service (memory consumption) via certain arguments in RPC calls that cause large amounts of memory to be allocated.

5CVSS7AI score0.01108EPSS
CVE
CVEadded 2007/08/23 12:17 a.m.38 views

CVE-2007-4492

Multiple unspecified vulnerabilities in the ata disk driver in Sun Solaris 8, 9, and 10 on the x86 platform before 20070821 allow local users to cause a denial of service (system panic) via unspecified ioctl functions, aka Bug 6433123.

4.9CVSS6.4AI score0.00045EPSS
CVE
CVEadded 2007/08/23 1:17 a.m.38 views

CVE-2007-4495

Unspecified vulnerability in the ata disk driver in Sun Solaris 10 on the x86 platform before 20070821 allows local users to cause a denial of service (system panic) via an unspecified ioctl function, aka Bug 6433124.

4.9CVSS6.1AI score0.00051EPSS
CVE
CVEadded 2007/09/27 7:17 p.m.38 views

CVE-2007-5132

Race condition in the kernel in Sun Solaris 8 through 10 allows local users to cause a denial of service (panic) via unspecified vectors related to "the handling of thread contexts."

4.9CVSS6AI score0.00047EPSS
CVE
CVEadded 2002/03/09 5:0 a.m.37 views

CVE-2001-0565

Buffer overflow in mailx in Solaris 8 and earlier allows a local attacker to gain additional privileges via a long '-F' command line option.

4.6CVSS6.9AI score0.00175EPSS
CVE
CVEadded 2005/01/19 5:0 a.m.37 views

CVE-2004-1353

Unknown vulnerability in LDAP on Sun Solaris 8 and 9, when using Role Based Access Control (RBAC), allows local users to execute certain commands with additional privileges.

7.2CVSS7.2AI score0.00058EPSS
CVE
CVEadded 2006/07/18 3:47 p.m.37 views

CVE-2006-3664

Unspecified vulnerability in NIS server on Sun Solaris 8, 9, and 10 allows local and remote attackers to cause a denial of service (ypserv hang) via unknown vectors.

5CVSS6.2AI score0.01849EPSS
CVE
CVEadded 2006/12/04 11:28 a.m.37 views

CVE-2006-6275

Race condition in the kernel in Sun Solaris 8 through 10 allows local users to cause a denial of service (panic) via unspecified vectors, possibly related to the exitlwps function and SIGKILL and /proc PCAGENT signals.

4.7CVSS6.7AI score0.00048EPSS
CVE
CVEadded 2005/02/08 5:0 a.m.36 views

CVE-2003-1056

The ed editor for Sun Solaris 2.6, 7, and 8 allows local users to create or overwrite arbitrary files via a symlink attack on temporary files.

7.2CVSS6.8AI score0.00047EPSS
CVE
CVEadded 2005/02/08 5:0 a.m.36 views

CVE-2003-1067

Multiple buffer overflows in the (1) dbm_open function, as used in ndbm and dbm, and the (2) dbminit function in Solaris 2.6 through 9 allow local users to gain root privileges via long arguments to Xsun or other programs that use these functions.

7.2CVSS6.7AI score0.00092EPSS
CVE
CVEadded 2005/02/08 5:0 a.m.36 views

CVE-2003-1076

Unknown vulnerability in sendmail for Solaris 7, 8, and 9 allows local users to cause a denial of service (unknown impact) and possibly gain privileges via certain constructs in a .forward file.

7.2CVSS6.6AI score0.00053EPSS
CVE
CVEadded 2005/05/02 4:0 a.m.36 views

CVE-2005-0816

Buffer overflow in newgrp in Solaris 7 through 9 allows local users to gain root privileges.

7.2CVSS7.2AI score0.0005EPSS
CVE
CVEadded 2007/06/27 5:30 p.m.36 views

CVE-2007-3458

The libsldap library in Sun Solaris 8, 9, and 10 allows local users to cause a denial of service (Name Service Caching Daemon (nscd) crash) via unspecified vectors.

4.9CVSS6AI score0.00061EPSS
CVE
CVEadded 2004/08/06 4:0 a.m.35 views

CVE-2004-0654

Unknown vulnerability in the Basic Security Module (BSM), when configured to audit either the Administrative (ad) or the System-Wide Administration (as) audit class in Solaris 7, 8, and 9, allows local users to cause a denial of service (kernel panic).

2.1CVSS6.6AI score0.00128EPSS
CVE
CVEadded 2006/02/27 7:6 p.m.35 views

CVE-2006-0901

Unspecified vulnerability in the hsfs filesystem in Solaris 8, 9, and 10 allows unspecified attackers to cause a denial of service (panic) or execute arbitrary code.

7.2CVSS6.9AI score0.00094EPSS
CVE
CVEadded 2009/06/11 3:30 p.m.35 views

CVE-2009-2029

Unspecified vulnerability in rpc.nisd in Sun Solaris 8 through 10, and OpenSolaris before snv_104, allows remote authenticated users to cause a denial of service (NIS+ daemon hang) via unspecified vectors related to NIS+ callbacks.

5CVSS6.1AI score0.00742EPSS
CVE
CVEadded 2000/07/12 4:0 a.m.34 views

CVE-2000-0407

Buffer overflow in Solaris netpr program allows local users to execute arbitrary commands via a long -p option.

7.2CVSS7.7AI score0.00212EPSS
CVE
CVEadded 2002/03/15 5:0 a.m.34 views

CVE-2002-0088

Buffer overflow in admintool in Solaris 2.6, 7, and 8 allows local users to gain root privileges via a long media installation path.

7.2CVSS6.8AI score0.00053EPSS
CVE
CVEadded 2005/02/08 5:0 a.m.34 views

CVE-2003-1075

Unknown vulnerability in the FTP server (in.ftpd) for Solaris 2.6 through 9 allows remote attackers to cause a denial of service (temporary FTP server hang), which affects other active mode FTP clients.

5CVSS7AI score0.00911EPSS
CVE
CVEadded 2005/01/19 5:0 a.m.34 views

CVE-2004-1356

Unknown vulnerability in the sendfilev function in Sun Solaris 8 and 9 allows local users to cause a denial of service (system panic) via unknown vectors.

2.1CVSS6.5AI score0.00063EPSS
CVE
CVEadded 2007/09/06 7:17 p.m.34 views

CVE-2007-4732

Unspecified vulnerability in the strfreectty function in the Special File System (SPECFS) in Sun Solaris 8 through 10 allows local users to cause a denial of service (system panic), related to passing a NULL pointer to the pgsignal function.

4.9CVSS6.2AI score0.00058EPSS
CVE
CVEadded 2002/08/12 4:0 a.m.32 views

CVE-2002-0796

Format string vulnerability in the logging component of snmpdx for Solaris 5.6 through 8 allows remote attackers to gain root privileges.

10CVSS7.3AI score0.02571EPSS
CVE
CVEadded 2007/09/23 11:0 p.m.32 views

CVE-2004-2686

Directory traversal vulnerability in the vfs_getvfssw function in Solaris 2.6, 7, 8, and 9 allows local users to load arbitrary kernel modules via crafted (1) mount or (2) sysfs system calls. NOTE: this might be the same issue as CVE-2004-1767, but there are insufficient details to be sure.

7.2CVSS6.4AI score0.00211EPSS
Total number of security vulnerabilities130