Solaris

solaris

Vendor: Sun • 450 CVEs

CVEs (450)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2008-0938 1Sun 1Solaris Apr 23, 2026 Feb 25, 2008 N/A· v4 N/A· v3 4.7 MEDIUM· v2 Unspecified vulnerability in the dynamic tracing framework (DTrace) in Sun Solaris 10 allows local users with PRIV_DTRACE_USER or PRIV_DTRACE_PROC privileges to obtain sensitive kernel information via unspecified vectors...Show more Unspecified vulnerability in the dynamic tracing framework (DTrace) in Sun Solaris 10 allows local users with PRIV_DTRACE_USER or PRIV_DTRACE_PROC privileges to obtain sensitive kernel information via unspecified vectors, a different vulnerability than CVE-2007-4126.Show less
CVE-2008-0933 1Sun 1Solaris Apr 23, 2026 Feb 25, 2008 N/A· v4 N/A· v3 4.7 MEDIUM· v2 Multiple race conditions in the CPU Performance Counters (cpc) subsystem in the kernel in Sun Solaris 10 allow local users to cause a denial of service (panic) via unspecified vectors related to kcpc_unbind and kcpc_rest...Show more Multiple race conditions in the CPU Performance Counters (cpc) subsystem in the kernel in Sun Solaris 10 allow local users to cause a denial of service (panic) via unspecified vectors related to kcpc_unbind and kcpc_restore.Show less
CVE-2008-0836 1Sun 1Solaris Apr 23, 2026 Feb 20, 2008 N/A· v4 N/A· v3 4.9 MEDIUM· v2 Unspecified vulnerability in the vuidmice STREAMS modules in Sun Solaris 9 and 10 on x86 architectures allows local users to cause a denial of service (panic) via unspecified vectors that trigger a NULL pointer dereferen...Show more Unspecified vulnerability in the vuidmice STREAMS modules in Sun Solaris 9 and 10 on x86 architectures allows local users to cause a denial of service (panic) via unspecified vectors that trigger a NULL pointer dereference in the vuid3ps2 module, a different issue than CVE-2007-5319.Show less
CVE-2008-0730 1Sun 1Solaris Apr 23, 2026 Feb 12, 2008 N/A· v4 N/A· v3 4.6 MEDIUM· v2 The (1) Simplified Chinese, (2) Traditional Chinese, (3) Korean, and (4) Thai language input methods in Sun Solaris 10 create files and directories with weak permissions under (a) .iiim/le and (b) .Xlocale in home direct...Show more The (1) Simplified Chinese, (2) Traditional Chinese, (3) Korean, and (4) Thai language input methods in Sun Solaris 10 create files and directories with weak permissions under (a) .iiim/le and (b) .Xlocale in home directories, which might allow local users to write to, or read from, the home directories of other users.Show less
CVE-2008-0718 1Sun 1Solaris Apr 23, 2026 Feb 12, 2008 N/A· v4 N/A· v3 4.7 MEDIUM· v2 Unspecified vulnerability in the USB Mouse STREAMS module (usbms) in Sun Solaris 9 and 10, when 64-bit mode is enabled, allows local users to cause a denial of service (panic) via unspecified vectors.
CVE-2008-0242 1Sun 1Solaris Apr 23, 2026 Jan 12, 2008 N/A· v4 N/A· v3 7.2 HIGH· v2 Unspecified vulnerability in libdevinfo in Sun Solaris 10 allows local users to access files and gain privileges via unknown vectors, related to login device permissions.
CVE-2007-6505 1Sun 1Solaris Apr 23, 2026 Dec 20, 2007 N/A· v4 N/A· v3 3.5 LOW· v2 Solaris 9, with Solaris Auditing enabled and certain patches for sshd installed, can generate audit records with an audit-ID of 0 even when the user logging into ssh is not root, which makes it easier for attackers to av...Show more Solaris 9, with Solaris Auditing enabled and certain patches for sshd installed, can generate audit records with an audit-ID of 0 even when the user logging into ssh is not root, which makes it easier for attackers to avoid detection and can make it more difficult to conduct forensics activities.Show less
CVE-2007-6413 1Sun 1Solaris Apr 23, 2026 Dec 17, 2007 N/A· v4 N/A· v3 9.3 HIGH· v2 Sun Solaris 10 with the 120011-04 and 120012-04 patches, and later 120011-* and 120012-* patches, allows remote attackers to bypass certain netgroup restrictions and obtain root access to a filesystem via NFS requests fr...Show more Sun Solaris 10 with the 120011-04 and 120012-04 patches, and later 120011-* and 120012-* patches, allows remote attackers to bypass certain netgroup restrictions and obtain root access to a filesystem via NFS requests from a client root user.Show less
CVE-2007-6225 1Sun 1Solaris Apr 23, 2026 Dec 4, 2007 N/A· v4 N/A· v3 4.9 MEDIUM· v2 Unspecified vulnerability in Sun Solaris 10, when 64bit mode is used on the x86 platform, allows local users in a Linux (lx) branded zone to cause a denial of service (panic) via unspecified vectors.
CVE-2007-6216 1Sun 2Solaris Sunos Apr 23, 2026 Dec 4, 2007 N/A· v4 N/A· v3 4.7 MEDIUM· v2 Race condition in the Fibre Channel protocol (fcp) driver and Devices filesystem (devfs) in Sun Solaris 10 allows local users to cause a denial of service (system hang) via some programs that access hardware resources, a...Show more Race condition in the Fibre Channel protocol (fcp) driver and Devices filesystem (devfs) in Sun Solaris 10 allows local users to cause a denial of service (system hang) via some programs that access hardware resources, as demonstrated by the (1) cfgadm and (2) format programs.Show less
CVE-2007-6180 1Sun 1Solaris Apr 23, 2026 Nov 30, 2007 N/A· v4 N/A· v3 7.6 HIGH· v2 Race condition in the Remote Procedure Call kernel module (rpcmod) in Sun Solaris 8 through 10 allows local users to cause a denial of service (NULL dereference and panic) via unspecified vectors.
CVE-2007-5726 1Sun 1Solaris Apr 23, 2026 Oct 30, 2007 N/A· v4 N/A· v3 6.8 MEDIUM· v2 Unspecified vulnerability in the Stream Control Transmission Protocol (sctp) functionality in Sun Solaris 10, when at least one SCTP socket is in the LISTEN state, allows remote attackers to cause a denial of service (pa...Show more Unspecified vulnerability in the Stream Control Transmission Protocol (sctp) functionality in Sun Solaris 10, when at least one SCTP socket is in the LISTEN state, allows remote attackers to cause a denial of service (panic) via unspecified vectors related to "INIT processing."Show less
CVE-2007-5716 1Sun 1Solaris Apr 23, 2026 Oct 30, 2007 N/A· v4 N/A· v3 7.8 HIGH· v2 Unspecified vulnerability in the Internet Protocol (IP) functionality in Sun Solaris 10 allows local users to cause a denial of service (panic) via unspecified vectors, probably related to a UDP packet.
CVE-2007-5632 1Sun 1Solaris Apr 23, 2026 Oct 23, 2007 N/A· v4 N/A· v3 4.9 MEDIUM· v2 Multiple unspecified vulnerabilities in the kernel in Sun Solaris 8 through 10 allow local users to cause a denial of service (panic), related to the support for retrieval of kernel statistics, and possibly related to th...Show more Multiple unspecified vulnerabilities in the kernel in Sun Solaris 8 through 10 allow local users to cause a denial of service (panic), related to the support for retrieval of kernel statistics, and possibly related to the sfmmu_mlspl_enter or sfmmu_mlist_enter functions.Show less
CVE-2007-5462 1Sun 1Solaris Apr 23, 2026 Oct 15, 2007 N/A· v4 N/A· v3 7.8 HIGH· v2 Unspecified vulnerability in the Sun Solaris RPC services library (librpcsvc) on Solaris 8 through 10 allows remote attackers to cause a denial of service (mountd crash) via unspecified packets to a server that exports m...Show more Unspecified vulnerability in the Sun Solaris RPC services library (librpcsvc) on Solaris 8 through 10 allows remote attackers to cause a denial of service (mountd crash) via unspecified packets to a server that exports many filesystems, and allows local users to cause a denial of service (automountd crash) via unspecified requests to mount filesystems from a server that exports many filesystems.Show less
CVE-2007-5368 1Sun 1Solaris Apr 23, 2026 Oct 11, 2007 N/A· v4 N/A· v3 4.9 MEDIUM· v2 Multiple unspecified vulnerabilities in labeld in Trusted Extensions in Sun Solaris 10 allow local users to cause a denial of service (multiple application hang) via unspecified vectors.
CVE-2007-5367 1Sun 1Solaris Apr 23, 2026 Oct 11, 2007 N/A· v4 N/A· v3 4.9 MEDIUM· v2 Unspecified vulnerability in the Virtual File System (VFS) in Sun Solaris 10 allows local users to cause a denial of service (kernel memory consumption) via unspecified vectors.
CVE-2007-5365 5Debian OpenbsdRedhat+2 more 7Debian Linux Enterprise LinuxLinux Advanced Workstation+4 more Apr 23, 2026 Oct 11, 2007 N/A· v4 N/A· v3 7.2 HIGH· v2 Stack-based buffer overflow in the cons_options function in options.c in dhcpd in OpenBSD 4.0 through 4.2, and some other dhcpd implementations based on ISC dhcp-2, allows remote attackers to execute arbitrary code or ca...Show more Stack-based buffer overflow in the cons_options function in options.c in dhcpd in OpenBSD 4.0 through 4.2, and some other dhcpd implementations based on ISC dhcp-2, allows remote attackers to execute arbitrary code or cause a denial of service (daemon crash) via a DHCP request specifying a maximum message size smaller than the minimum IP MTU.Show less
CVE-2007-5319 1Sun 1Solaris Apr 23, 2026 Oct 9, 2007 N/A· v4 N/A· v3 3.5 LOW· v2 Unspecified vulnerability in the vuidmice STREAMS modules in Sun Solaris 8, 9, and 10 allows local users with console (/dev/console) access to cause a denial of service ("unusable" system console) via unspecified vectors...Show more Unspecified vulnerability in the vuidmice STREAMS modules in Sun Solaris 8, 9, and 10 allows local users with console (/dev/console) access to cause a denial of service ("unusable" system console) via unspecified vectors.Show less
CVE-2007-5132 1Sun 1Solaris Apr 23, 2026 Sep 27, 2007 N/A· v4 N/A· v3 4.9 MEDIUM· v2 Race condition in the kernel in Sun Solaris 8 through 10 allows local users to cause a denial of service (panic) via unspecified vectors related to "the handling of thread contexts."

Previous 1...567...23 Next