Lucene search
K
Database
Vendors
Products
Timeline
Vulnerabilities
Perimeter Scanner
Scanning
Projects
Scanner
Agent Scanning
API Scanning
Manual Audit
Email
Webhook
Resources
Documents
Blog
Glossary
FAQ
Plugins
Pricing
Contacts
About Us
Partners
Branding Guideline
Settings
Sign in
SunSunos

17 matches found

CVE
CVEadded 2008/08/08 6:41 p.m.47 views

CVE-2008-0964

Multiple stack-based buffer overflows in snoop on Sun Solaris 8 through 10 and OpenSolaris before snv_96, when the -o option is omitted, allow remote attackers to execute arbitrary code via a crafted SMB packet.

9.3CVSS7.3AI score0.24948EPSS
CVE
CVEadded 2008/12/12 6:30 p.m.45 views

CVE-2008-5550

Open redirect vulnerability in console/faces/jsp/login/BeginLogin.jsp in Sun Java Web Console 3.0.2 through 3.0.5 and Solaris 10 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via the redirect_url parameter.

4.3CVSS6.5AI score0.00638EPSS
CVE
CVEadded 2008/10/21 12:10 a.m.43 views

CVE-2008-4619

The RPC subsystem in Sun Solaris 9 allows remote attackers to cause a denial of service (daemon crash) via a crafted request to procedure 8 in program 100000 (rpcbind), related to the XDR_DECODE operation and the taddr2uaddr function. NOTE: this might be a duplicate of CVE-2007-0165.

10CVSS6.1AI score0.09892EPSS
CVE
CVEadded 2008/05/09 3:20 p.m.42 views

CVE-2008-2121

The TCP implementation in Sun Solaris 8, 9, and 10 allows remote attackers to cause a denial of service (CPU consumption and new connection timeouts) via a TCP SYN flood attack.

7.8CVSS6.4AI score0.023EPSS
CVE
CVEadded 2008/06/16 8:41 p.m.42 views

CVE-2008-2710

Integer signedness error in the ip_set_srcfilter function in the IP Multicast Filter in uts/common/inet/ip/ip_multi.c in the kernel in Sun Solaris 10 and OpenSolaris before snv_92 allows local users to execute arbitrary code in other Solaris Zones via an SIOCSIPMSFILTER IOCTL request with a large v...

7.2CVSS7.2AI score0.00081EPSS
CVE
CVEadded 2008/06/30 10:41 p.m.42 views

CVE-2008-2946

The SNMP-DMI mapper subagent daemon (aka snmpXdmid) in Solstice Enterprise Agents in Sun Solaris 8 through 10 allows remote attackers to cause a denial of service (daemon crash) via malformed packets.

7.8CVSS6.3AI score0.00817EPSS
CVE
CVEadded 2008/08/08 6:41 p.m.41 views

CVE-2008-0965

Multiple format string vulnerabilities in snoop on Sun Solaris 8 through 10 and OpenSolaris before snv_96, when the -o option is omitted, allow remote attackers to execute arbitrary code via format string specifiers in an SMB packet.

9.3CVSS7.4AI score0.20404EPSS
CVE
CVEadded 2008/03/24 10:44 p.m.41 views

CVE-2008-1480

rpc.metad in Sun Solaris 10 allows remote attackers to cause a denial of service (daemon crash) via a malformed RPC request.

4.3CVSS6.3AI score0.12098EPSS
CVE
CVEadded 2008/05/12 7:20 p.m.40 views

CVE-2008-2144

Multiple unspecified vulnerabilities in Solaris print service for Sun Solaris 8, 9, and 10 allow remote attackers to cause a denial of service or execute arbitrary code via unknown vectors.

10CVSS7.8AI score0.19979EPSS
CVE
CVEadded 2008/07/31 10:41 p.m.40 views

CVE-2008-3426

Unspecified vulnerability in the Solaris Platform Information and Control Library daemon (picld) in Sun Solaris 8 through 10, and OpenSolaris builds snv_01 through snv_95, allows local users to cause a denial of service via unknown vectors that prevent operation of utilities such as prtdiag, prtpic...

2.1CVSS6AI score0.00069EPSS
CVE
CVEadded 2008/02/29 11:44 a.m.36 views

CVE-2008-1095

Unspecified vulnerability in the Internet Protocol (IP) implementation in Sun Solaris 8, 9, and 10 allows remote attackers to bypass intended firewall policies or cause a denial of service (panic) via unknown vectors, possibly related to ICMP packets and IP fragment reassembly.

6.8CVSS6.8AI score0.00723EPSS
CVE
CVEadded 2008/03/18 5:44 p.m.34 views

CVE-2008-1369

A certain incorrect Sun Solaris 10 image on SPARC Enterprise T5120 and T5220 servers has /etc/default/login and /etc/ssh/sshd_config files that configure root logins in a manner unintended by the vendor, which allows remote attackers to gain privileges via unspecified vectors.

10CVSS6.9AI score0.02372EPSS
CVE
CVEadded 2008/06/16 8:41 p.m.34 views

CVE-2008-2708

Unspecified vulnerability in the Sun (1) UltraSPARC T2 and (2) UltraSPARC T2+ kernel modules in Sun Solaris 10, and OpenSolaris before snv_93, allows local users to cause a denial of service (panic) via unspecified vectors, probably related to core files.

4.9CVSS6.2AI score0.00069EPSS
CVE
CVEadded 2008/08/04 6:41 p.m.34 views

CVE-2008-3450

Unspecified vulnerability in the namefs kernel module in Sun Solaris 8 through 10 allows local users to gain privileges or cause a denial of service (panic) via unspecified vectors.

7.2CVSS6.2AI score0.00058EPSS
CVE
CVEadded 2008/01/15 8:0 p.m.33 views

CVE-2008-0269

Unspecified vulnerability in the dotoprocs function in Sun Solaris 10 allows local users to cause a denial of service (panic) via unspecified vectors.

4.9CVSS6.2AI score0.00064EPSS
CVE
CVEadded 2008/08/13 5:41 p.m.29 views

CVE-2008-3666

Unspecified vulnerability in Sun Solaris 10 and OpenSolaris before snv_96 allows (1) context-dependent attackers to cause a denial of service (panic) via vectors involving creation of a crafted file and use of the sendfilev system call, as demonstrated by a file served by an Apache 2.2.x web server...

7.1CVSS6.1AI score0.00877EPSS
CVE
CVEadded 2008/04/14 4:5 p.m.28 views

CVE-2008-1778

Unspecified vulnerability in the floating point context switch implementation in Sun Solaris 9 and 10 on x86 platforms might allow local users to cause a denial of service (application exit), corrupt data, or trigger incorrect calculations via unknown vectors.

6.6CVSS6.3AI score0.00051EPSS