Solaris

solaris

Vendor: Sun • 450 CVEs

CVEs (450)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2009-2652 1Sun 2Opensolaris Solaris Apr 23, 2026 Aug 3, 2009 N/A· v4 N/A· v3 6.8 MEDIUM· v2 Unspecified vulnerability in Solaris Trusted Extensions in Sun Solaris 10, and OpenSolaris snv_37 through snv_120, allows remote attackers to cause a denial of service (panic) via vectors involving the parsing of labeled...Show more Unspecified vulnerability in Solaris Trusted Extensions in Sun Solaris 10, and OpenSolaris snv_37 through snv_120, allows remote attackers to cause a denial of service (panic) via vectors involving the parsing of labeled packets.Show less
CVE-2009-2644 1Sun 2Opensolaris Solaris Apr 23, 2026 Jul 29, 2009 N/A· v4 N/A· v3 4.9 MEDIUM· v2 Race condition in the Solaris Auditing subsystem in Sun Solaris 9 and 10 and OpenSolaris before snv_121, when extended file attributes are used, allows local users to cause a denial of service (panic) via vectors related...Show more Race condition in the Solaris Auditing subsystem in Sun Solaris 9 and 10 and OpenSolaris before snv_121, when extended file attributes are used, allows local users to cause a denial of service (panic) via vectors related to "pathnames for invalid fds."Show less
CVE-2009-2596 1Sun 2Opensolaris Solaris Apr 23, 2026 Jul 27, 2009 N/A· v4 N/A· v3 4.7 MEDIUM· v2 Unspecified vulnerability in the Solaris Auditing subsystem in Sun Solaris 9 and 10 and OpenSolaris before snv_121, when extended file attributes are used, allows local users to cause a denial of service (panic) via vect...Show more Unspecified vulnerability in the Solaris Auditing subsystem in Sun Solaris 9 and 10 and OpenSolaris before snv_121, when extended file attributes are used, allows local users to cause a denial of service (panic) via vectors related to fad_aupath structure members.Show less
CVE-2009-2488 1Sun 2Opensolaris Solaris Apr 23, 2026 Jul 16, 2009 N/A· v4 N/A· v3 4.9 MEDIUM· v2 Unspecified vulnerability in the NFSv4 module in the kernel in Sun Solaris 10, and OpenSolaris snv_102 through snv_119, allows local users to cause a denial of service (client panic) via vectors involving "file operation...Show more Unspecified vulnerability in the NFSv4 module in the kernel in Sun Solaris 10, and OpenSolaris snv_102 through snv_119, allows local users to cause a denial of service (client panic) via vectors involving "file operations."Show less
CVE-2009-2487 1Sun 2Opensolaris Solaris Apr 23, 2026 Jul 16, 2009 N/A· v4 N/A· v3 7.8 HIGH· v2 Use-after-free vulnerability in the frpr_icmp function in the ipfilter (aka IP Filter) subsystem in Sun Solaris 10, and OpenSolaris snv_45 through snv_110, allows remote attackers to cause a denial of service (panic) via...Show more Use-after-free vulnerability in the frpr_icmp function in the ipfilter (aka IP Filter) subsystem in Sun Solaris 10, and OpenSolaris snv_45 through snv_110, allows remote attackers to cause a denial of service (panic) via unspecified vectors.Show less
CVE-2009-2486 1Sun 2Opensolaris Solaris Apr 23, 2026 Jul 16, 2009 N/A· v4 N/A· v3 7.8 HIGH· v2 Unspecified vulnerability in the SCTP implementation in Sun Solaris 10, and OpenSolaris before snv_120, allows remote attackers to cause a denial of service (panic) via unspecified packets.
CVE-2009-2430 1Sun 2Opensolaris Solaris Apr 23, 2026 Jul 10, 2009 N/A· v4 N/A· v3 4.6 MEDIUM· v2 Unspecified vulnerability in auditconfig in Sun Solaris 8, 9, 10, and OpenSolaris snv_01 through snv_58, when Solaris Auditing is enabled, allows local users with an RBAC execution profile for auditconfig to gain privile...Show more Unspecified vulnerability in auditconfig in Sun Solaris 8, 9, 10, and OpenSolaris snv_01 through snv_58, when Solaris Auditing is enabled, allows local users with an RBAC execution profile for auditconfig to gain privileges via unknown attack vectors.Show less
CVE-2009-2297 1Sun 2Opensolaris Solaris Apr 23, 2026 Jul 2, 2009 N/A· v4 N/A· v3 7.1 HIGH· v2 Unspecified vulnerability in the udp subsystem in the kernel in Sun Solaris 10, and OpenSolaris snv_90 through snv_108, when Solaris Trusted Extensions is enabled, allows remote attackers to cause a denial of service (pa...Show more Unspecified vulnerability in the udp subsystem in the kernel in Sun Solaris 10, and OpenSolaris snv_90 through snv_108, when Solaris Trusted Extensions is enabled, allows remote attackers to cause a denial of service (panic) via unspecified vectors involving the crgetlabel function, related to a "TX panic." NOTE: this issue exists because of a regression in earlier kernel patches.Show less
CVE-2009-2296 1Sun 2Opensolaris Solaris Apr 23, 2026 Jul 2, 2009 N/A· v4 N/A· v3 10.0 HIGH· v2 The NFSv4 server kernel module in Sun Solaris 10, and OpenSolaris before snv_119, does not properly implement the nfs_portmon setting, which allows remote attackers to access shares, and read, create, and modify arbitrar...Show more The NFSv4 server kernel module in Sun Solaris 10, and OpenSolaris before snv_119, does not properly implement the nfs_portmon setting, which allows remote attackers to access shares, and read, create, and modify arbitrary files, via unspecified vectors.Show less
CVE-2009-2283 1Sun 2Java Web Console Solaris Apr 23, 2026 Jul 1, 2009 N/A· v4 N/A· v3 4.3 MEDIUM· v2 Multiple cross-site scripting (XSS) vulnerabilities in the help jsp scripts in Sun Java Web Console 3.0.2 through 3.0.5, and Sun Java Web Console in Solaris 10, allow remote attackers to inject arbitrary web script or HT...Show more Multiple cross-site scripting (XSS) vulnerabilities in the help jsp scripts in Sun Java Web Console 3.0.2 through 3.0.5, and Sun Java Web Console in Solaris 10, allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.Show less
CVE-2009-2187 1Sun 2Opensolaris Solaris Apr 23, 2026 Jun 25, 2009 N/A· v4 N/A· v3 4.9 MEDIUM· v2 Multiple memory leaks in the (1) IP and (2) IPv6 multicast implementation in the kernel in Sun Solaris 10, and OpenSolaris snv_67 through snv_93, allow local users to cause a denial of service (memory consumption) via ve...Show more Multiple memory leaks in the (1) IP and (2) IPv6 multicast implementation in the kernel in Sun Solaris 10, and OpenSolaris snv_67 through snv_93, allow local users to cause a denial of service (memory consumption) via vectors related to the association of (a) DL_ENABMULTI_REQ and (b) DL_DISABMULTI_REQ messages with ARP messages.Show less
CVE-2009-2137 1Sun 2Opensolaris Solaris Apr 23, 2026 Jun 19, 2009 N/A· v4 N/A· v3 7.8 HIGH· v2 Memory leak in the Ultra-SPARC T2 crypto provider device driver (aka n2cp) in Sun Solaris 10, and OpenSolaris snv_54 through snv_112, allows context-dependent attackers to cause a denial of service (memory consumption) v...Show more Memory leak in the Ultra-SPARC T2 crypto provider device driver (aka n2cp) in Sun Solaris 10, and OpenSolaris snv_54 through snv_112, allows context-dependent attackers to cause a denial of service (memory consumption) via unspecified vectors related to a large keylen value.Show less
CVE-2009-2136 1Sun 2Opensolaris Solaris Apr 23, 2026 Jun 19, 2009 N/A· v4 N/A· v3 7.8 HIGH· v2 Unspecified vulnerability in the TCP/IP networking stack in Sun Solaris 10, and OpenSolaris snv_01 through snv_82 and snv_111 through snv_117, when a Cassini GigaSwift Ethernet Adapter (aka CE) interface is used, allows...Show more Unspecified vulnerability in the TCP/IP networking stack in Sun Solaris 10, and OpenSolaris snv_01 through snv_82 and snv_111 through snv_117, when a Cassini GigaSwift Ethernet Adapter (aka CE) interface is used, allows remote attackers to cause a denial of service (panic) via vectors involving jumbo frames.Show less
CVE-2009-2135 1Sun 2Opensolaris Solaris Apr 23, 2026 Jun 19, 2009 N/A· v4 N/A· v3 4.9 MEDIUM· v2 Multiple race conditions in the Solaris Event Port API in Sun Solaris 10 and OpenSolaris before snv_107 allow local users to cause a denial of service (panic) via unspecified vectors related to a race between the port_di...Show more Multiple race conditions in the Solaris Event Port API in Sun Solaris 10 and OpenSolaris before snv_107 allow local users to cause a denial of service (panic) via unspecified vectors related to a race between the port_dissociate and close functions.Show less
CVE-2009-2029 1Sun 2Opensolaris Solaris Apr 23, 2026 Jun 11, 2009 N/A· v4 N/A· v3 5.0 MEDIUM· v2 Unspecified vulnerability in rpc.nisd in Sun Solaris 8 through 10, and OpenSolaris before snv_104, allows remote authenticated users to cause a denial of service (NIS+ daemon hang) via unspecified vectors related to NIS+...Show more Unspecified vulnerability in rpc.nisd in Sun Solaris 8 through 10, and OpenSolaris before snv_104, allows remote authenticated users to cause a denial of service (NIS+ daemon hang) via unspecified vectors related to NIS+ callbacks.Show less
CVE-2009-1933 1Sun 2Opensolaris Solaris Apr 23, 2026 Jun 5, 2009 N/A· v4 N/A· v3 4.7 MEDIUM· v2 Kerberos in Sun Solaris 8, 9, and 10, and OpenSolaris before snv_117, does not properly manage credential caches, which allows local users to access Kerberized NFS mount points and Kerberized NFS shares via unspecified v...Show more Kerberos in Sun Solaris 8, 9, and 10, and OpenSolaris before snv_117, does not properly manage credential caches, which allows local users to access Kerberized NFS mount points and Kerberized NFS shares via unspecified vectors.Show less
CVE-2008-3870 1Sun 1Solaris Apr 23, 2026 May 26, 2009 N/A· v4 N/A· v3 10.0 HIGH· v2 Integer overflow in sadmind in Sun Solaris 8 and 9 allows remote attackers to execute arbitrary code via a crafted RPC request that triggers a heap-based buffer overflow, related to improper memory allocation.
CVE-2008-3869 1Sun 1Solaris Apr 23, 2026 May 26, 2009 N/A· v4 N/A· v3 10.0 HIGH· v2 Heap-based buffer overflow in sadmind in Sun Solaris 8 and 9 allows remote attackers to execute arbitrary code via a crafted RPC request, related to improper decoding of request parameters.
CVE-2009-1673 1Sun 1Solaris Apr 23, 2026 May 18, 2009 N/A· v4 N/A· v3 4.9 MEDIUM· v2 The kernel in Sun Solaris 9 allows local users to cause a denial of service (panic) by calling fstat with a first argument of AT_FDCWD.
CVE-2009-1478 1Sun 2Opensolaris Solaris Apr 23, 2026 Apr 29, 2009 N/A· v4 N/A· v3 4.9 MEDIUM· v2 Multiple unspecified vulnerabilities in the DTrace ioctl handlers in Sun Solaris 10, and OpenSolaris before snv_114, allow local users to cause a denial of service (panic) via unknown vectors.

Previous 123 4 5...23 Next