Solaris Security Vulnerabilities and Issues — Solaris CVE List

Lucene search

SunSolaris

9 matches found

CVE•added 2006/07/25 1:22 p.m.•41 views

CVE-2006-3824

systeminfo.c for Sun Solaris allows local users to read kernel memory via a 0 variable count argument to the sysinfo system call, which causes a -1 argument to be used by the copyout function. NOTE: this issue has been referred to as an integer overflow, but it is probably more like a signedness er...

4.9CVSS6AI score0.00271EPSS

CVE•added 2006/07/28 10:4 p.m.•39 views

CVE-2006-3920

The TCP implementation in Sun Solaris 8, 9, and 10 before 20060726 allows remote attackers to cause a denial of service (resource exhaustion) via a TCP packet with an incorrect sequence number, which triggers an ACK storm.

5CVSS6.6AI score0.01954EPSS

CVE•added 2006/07/18 3:47 p.m.•37 views

CVE-2006-3664

Unspecified vulnerability in NIS server on Sun Solaris 8, 9, and 10 allows local and remote attackers to cause a denial of service (ypserv hang) via unknown vectors.

5CVSS6.2AI score0.01849EPSS

CVE•added 2006/07/24 12:19 p.m.•36 views

CVE-2006-3783

Sun Solaris 10 allows local users to cause a denial of service (panic) via unspecified vectors involving (1) the /net mount point and (2) the "-hosts" map in a mount point.

4.9CVSS6.6AI score0.00054EPSS

CVE•added 2006/07/18 3:46 p.m.•35 views

CVE-2006-3606

Unspecified vulnerability in Sun Solaris X Inter Client Exchange library (libICE) on Solaris 8 and 9 allows context-dependent attackers to cause a denial of service (application crash) to applications that use the library.

5CVSS6.8AI score0.0074EPSS

CVE•added 2006/07/24 12:19 p.m.•35 views

CVE-2006-3782

Unspecified vulnerability in the kernel debugger (kmdb) in Sun Solaris 10, when running on x86, allows local users to cause a denial of service (system hang) via unspecified vectors.

4.9CVSS6.4AI score0.00054EPSS

CVE•added 2006/07/25 1:22 p.m.•35 views

CVE-2006-3825

The IPv4 implementation in Sun Solaris 10 before 20060721 allows local users to select routes that differ from the routing table, possibly facilitating firewall bypass or unauthorized network communication.

2.1CVSS6.4AI score0.00071EPSS

CVE•added 2006/07/21 2:3 p.m.•33 views

CVE-2006-3728

Unspecified vulnerability in the kernel in Solaris 10 with patch 118822-29 (118844-29 on x86) and without patch 118833-11 (118855-08) allows remote authenticated users to cause a denial of service via unspecified vectors that lead to "kernel data structure corruption" that can trigger a system pani...

6.8CVSS6.5AI score0.01339EPSS

CVE•added 2006/07/24 12:19 p.m.•29 views

CVE-2006-3781

Unspecified vulnerability in Sun Solaris 10 allows context-dependent attackers to cause a denial of service (panic) via unspecified vectors involving the event port API.

7.8CVSS6.8AI score0.00994EPSS