Solaris

solaris

Vendor: Sun • 450 CVEs

CVEs (450)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2007-5118 1Sun 1Solaris Apr 23, 2026 Sep 27, 2007 N/A· v4 N/A· v3 4.7 MEDIUM· v2 Unspecified vulnerability in the HID (Human Interface Device) class driver in Sun Solaris 8, 9, and 10 before 20070925 allows local users to cause a denial of service (panic) via unspecified vectors.
CVE-2007-4732 1Sun 1Solaris Apr 23, 2026 Sep 6, 2007 N/A· v4 N/A· v3 4.9 MEDIUM· v2 Unspecified vulnerability in the strfreectty function in the Special File System (SPECFS) in Sun Solaris 8 through 10 allows local users to cause a denial of service (system panic), related to passing a NULL pointer to t...Show more Unspecified vulnerability in the strfreectty function in the Special File System (SPECFS) in Sun Solaris 8 through 10 allows local users to cause a denial of service (system panic), related to passing a NULL pointer to the pgsignal function.Show less
CVE-2007-4495 1Sun 1Solaris Apr 23, 2026 Aug 23, 2007 N/A· v4 N/A· v3 4.9 MEDIUM· v2 Unspecified vulnerability in the ata disk driver in Sun Solaris 10 on the x86 platform before 20070821 allows local users to cause a denial of service (system panic) via an unspecified ioctl function, aka Bug 6433124.
CVE-2007-4492 1Sun 1Solaris Apr 23, 2026 Aug 23, 2007 N/A· v4 N/A· v3 4.9 MEDIUM· v2 Multiple unspecified vulnerabilities in the ata disk driver in Sun Solaris 8, 9, and 10 on the x86 platform before 20070821 allow local users to cause a denial of service (system panic) via unspecified ioctl functions, a...Show more Multiple unspecified vulnerabilities in the ata disk driver in Sun Solaris 8, 9, and 10 on the x86 platform before 20070821 allow local users to cause a denial of service (system panic) via unspecified ioctl functions, aka Bug 6433123.Show less
CVE-2007-4126 1Sun 1Solaris Apr 23, 2026 Aug 1, 2007 N/A· v4 N/A· v3 1.5 LOW· v2 Unspecified vulnerability in the dynamic tracing framework (DTrace) on Sun Solaris 10 before 20070730 allows local users with PRIV_DTRACE_USER privileges to cause a denial of service (panic or hang) via unspecified use o...Show more Unspecified vulnerability in the dynamic tracing framework (DTrace) on Sun Solaris 10 before 20070730 allows local users with PRIV_DTRACE_USER privileges to cause a denial of service (panic or hang) via unspecified use of certain DTrace programs.Show less
CVE-2007-4070 1Sun 1Solaris Apr 23, 2026 Jul 30, 2007 N/A· v4 N/A· v3 4.9 MEDIUM· v2 Unspecified vulnerability in Low Bandwidth X proxy (lbxproxy) on Sun Solaris 8 through 10 before 20070725 allows local users to read arbitrary files with root group ownership via unknown vectors.
CVE-2007-3723 1Sun 1Solaris Apr 23, 2026 Jul 12, 2007 N/A· v4 N/A· v3 2.1 LOW· v2 The process scheduler in the Sun Solaris kernel does not make use of the process statistics kept by the kernel and performs scheduling based upon CPU billing gathered from periodic process sampling ticks, which allows lo...Show more The process scheduler in the Sun Solaris kernel does not make use of the process statistics kept by the kernel and performs scheduling based upon CPU billing gathered from periodic process sampling ticks, which allows local users to cause a denial of service (CPU consumption), as described in "Secretly Monopolizing the CPU Without Superuser Privileges."Show less
CVE-2007-3471 1Sun 1Solaris Apr 23, 2026 Jun 28, 2007 N/A· v4 N/A· v3 7.2 HIGH· v2 Buffer overflow in the dtsession Common Desktop Environment (CDE) Session Manager in Sun Solaris 8, 9, and 10 allows local users to execute arbitrary code via unspecified vectors.
CVE-2007-3470 1Sun 1Solaris Apr 23, 2026 Jun 28, 2007 N/A· v4 N/A· v3 7.8 HIGH· v2 Multiple unspecified vulnerabilities in the KSSL kernel module in Sun Solaris 10, when configured with the KSSL proxy, allow remote attackers to cause a denial of service (kernel panic) via unspecified vectors related to...Show more Multiple unspecified vulnerabilities in the KSSL kernel module in Sun Solaris 10, when configured with the KSSL proxy, allow remote attackers to cause a denial of service (kernel panic) via unspecified vectors related to "memory buffers" of Secure Socket Layer (SSL) records.Show less
CVE-2007-3469 1Sun 1Solaris Apr 23, 2026 Jun 28, 2007 N/A· v4 N/A· v3 4.9 MEDIUM· v2 Unspecified vulnerability in the TCP Loopback/Fusion implementation in Sun Solaris 10 allows local users to cause a denial of service (resource exhaustion and service hang) via unspecified vectors.
CVE-2007-3458 1Sun 1Solaris Apr 23, 2026 Jun 27, 2007 N/A· v4 N/A· v3 4.9 MEDIUM· v2 The libsldap library in Sun Solaris 8, 9, and 10 allows local users to cause a denial of service (Name Service Caching Daemon (nscd) crash) via unspecified vectors.
CVE-2007-3283 1Sun 1Solaris Apr 23, 2026 Jun 19, 2007 N/A· v4 N/A· v3 6.8 MEDIUM· v2 GNOME XScreenSaver in Sun Solaris 8 and 9 before 20070417, when root is logged into the console, does not automatically lock the screen after a session has been inactive, which might allow physically proximate attackers...Show more GNOME XScreenSaver in Sun Solaris 8 and 9 before 20070417, when root is logged into the console, does not automatically lock the screen after a session has been inactive, which might allow physically proximate attackers to access the console.Show less
CVE-2007-3248 1Sun 1Solaris Apr 23, 2026 Jun 18, 2007 N/A· v4 N/A· v3 7.8 HIGH· v2 Unspecified vulnerability in Sun Solaris 10 before 20070614, when IPv6 interfaces are present but not configured for IPsec, allows remote attackers to cause a denial of service (system crash) via certain network traffic.
CVE-2007-3223 1Sun 2Solaris Sunos Apr 23, 2026 Jun 14, 2007 N/A· v4 N/A· v3 7.8 HIGH· v2 Unspecified vulnerability in the NFS server in Sun Solaris 10 before 20070613 allows remote attackers to cause a denial of service (system crash) via certain XDR data in NFS requests, probably related to processing of da...Show more Unspecified vulnerability in the NFS server in Sun Solaris 10 before 20070613 allows remote attackers to cause a denial of service (system crash) via certain XDR data in NFS requests, probably related to processing of data by the xdr_bool and xdrmblk_getint32 functions.Show less
CVE-2007-3094 1Sun 2Solaris Sunos Apr 23, 2026 Jun 6, 2007 N/A· v4 N/A· v3 9.0 HIGH· v2 Unspecified vulnerability in the authentication mechanism in Solaris Management Console (SMC) on Sun Solaris 8 through 10 before 20070605 allows remote authenticated users to execute arbitrary code via unspecified vector...Show more Unspecified vulnerability in the authentication mechanism in Solaris Management Console (SMC) on Sun Solaris 8 through 10 before 20070605 allows remote authenticated users to execute arbitrary code via unspecified vectors, related to the WBEM server.Show less
CVE-2007-3093 1Sun 2Solaris Sunos Apr 23, 2026 Jun 6, 2007 N/A· v4 N/A· v3 10.0 HIGH· v2 Unspecified vulnerability in the logging mechanism in Solaris Management Console (SMC) on Sun Solaris 8 through 10 before 20070605 allows remote attackers to execute arbitrary code via unspecified vectors, related to the...Show more Unspecified vulnerability in the logging mechanism in Solaris Management Console (SMC) on Sun Solaris 8 through 10 before 20070605 allows remote attackers to execute arbitrary code via unspecified vectors, related to the WBEM server.Show less
CVE-2007-3069 1Sun 1Solaris Apr 23, 2026 Jun 6, 2007 N/A· v4 N/A· v3 4.6 MEDIUM· v2 xscreensaver in Sun Solaris 10 before 20070604, when a GNOME session with Assistive Technology support is running, allows attackers with physical access to take control of the session after entering an Alt-Tab sequence.
CVE-2007-2990 1Sun 1Solaris Apr 23, 2026 Jun 1, 2007 N/A· v4 N/A· v3 4.9 MEDIUM· v2 Unspecified vulnerability in inetd in Sun Solaris 10 before 20070529 allows local users to cause a denial of service (daemon termination) via unspecified manipulations of the /var/run/.inetd.uds Unix domain socket file.
CVE-2007-2989 1Sun 1Solaris Apr 23, 2026 Jun 1, 2007 N/A· v4 N/A· v3 7.8 HIGH· v2 The libike library in Sun Solaris 9 before 20070529 contains a logic error related to a certain pointer, which allows remote attackers to cause a denial of service (in.iked daemon crash) by sending certain UDP packets wi...Show more The libike library in Sun Solaris 9 before 20070529 contains a logic error related to a certain pointer, which allows remote attackers to cause a denial of service (in.iked daemon crash) by sending certain UDP packets with a source port different from 500. NOTE: this issue might overlap CVE-2006-2298.Show less
CVE-2007-2882 1Sun 2Solaris Sunos Apr 23, 2026 May 30, 2007 N/A· v4 N/A· v3 5.0 MEDIUM· v2 Unspecified vulnerability in the NFS client module in Sun Solaris 8 through 10 before 20070524, when operating as an NFS server, allows remote attackers to cause a denial of service (crash) via certain Access Control Lis...Show more Unspecified vulnerability in the NFS client module in Sun Solaris 8 through 10 before 20070524, when operating as an NFS server, allows remote attackers to cause a denial of service (crash) via certain Access Control List (acl) packets.Show less

Previous 1...678...23 Next