Solaris Security Vulnerabilities and Issues — Solaris CVE List

Lucene search

SunSolaris

9 matches found

CVE•added 2009/01/15 5:30 p.m.•49 views

CVE-2009-0132

Integer overflow in the aio_suspend function in Sun Solaris 8 through 10 and OpenSolaris, when 32-bit mode is enabled, allows local users to cause a denial of service (panic) via a large integer value in the second argument (aka nent argument).

4.9CVSS6.3AI score0.00107EPSS

CVE•added 2009/01/27 8:30 p.m.•48 views

CVE-2009-0304

The kernel in Sun Solaris 10 and 11 snv_101b, and OpenSolaris before snv_108, allows remote attackers to cause a denial of service (system crash) via a crafted IPv6 packet, related to an "insufficient validation security vulnerability," as demonstrated by SunOSipv6.c.

7.8CVSS6.6AI score0.18145EPSS

CVE•added 2009/01/28 6:30 p.m.•46 views

CVE-2009-0319

Unspecified vulnerability in the autofs module in the kernel in Sun Solaris 8 through 10, and OpenSolaris before snv_108, allows local users to cause a denial of service (autofs mount outage) or possibly gain privileges via vectors related to "xdr processing problems."

6.9CVSS6.6AI score0.00044EPSS

CVE•added 2009/01/07 8:30 p.m.•45 views

CVE-2009-0069

Unspecified vulnerability in the nfs4rename_persistent_fh function in the NFS 4 (aka NFSv4) client in the kernel in Sun Solaris 10 and OpenSolaris before snv_102 allows local users to cause a denial of service (recursive mutex_enter and panic) via unspecified vectors.

4.9CVSS6.3AI score0.00061EPSS

CVE•added 2009/01/26 3:30 p.m.•43 views

CVE-2009-0268

Race condition in the pseudo-terminal (aka pty) driver module in Sun Solaris 8 through 10, and OpenSolaris before snv_103, allows local users to cause a denial of service (panic) via unspecified vectors related to lack of "properly sequenced code" in ptc and ptsl.

4.9CVSS6AI score0.00048EPSS

CVE•added 2009/01/26 3:30 p.m.•42 views

CVE-2009-0267

libike in Sun Solaris 9 and 10, and OpenSolaris before snv_100, does not properly check packets, which allows remote attackers to cause a denial of service (in.iked daemon crash) via an unspecified IKE packet, a different vulnerability than CVE-2007-2989.

5CVSS6.5AI score0.03788EPSS

CVE•added 2009/01/29 7:30 p.m.•40 views

CVE-2009-0346

The IP-in-IP packet processing implementation in the IPsec and IP stacks in the kernel in Sun Solaris 9 and 10, and OpenSolaris snv_01 though snv_85, allows local users to cause a denial of service (panic) via a self-encapsulated packet that lacks IPsec protection.

4.9CVSS6.3AI score0.00051EPSS

CVE•added 2009/01/16 9:30 p.m.•37 views

CVE-2009-0167

Unspecified vulnerability in lpadmin in Sun Solaris 10 and OpenSolaris snv_61 through snv_106 allows local users to cause a denial of service via unspecified vectors, related to enumeration of "wrong printers," aka a "Temporary file vulnerability."

4.7CVSS6.3AI score0.00058EPSS

CVE•added 2009/01/16 9:30 p.m.•37 views

CVE-2009-0168

Unspecified vulnerability in ppdmgr in Sun Solaris 10 and OpenSolaris snv_61 through snv_106 allows local users to cause a denial of service via unspecified vectors, related to a failure to "include all cache files," and improper handling of temporary files.

4.9CVSS6.3AI score0.00062EPSS