Solaris

solaris

Vendor: Sun • 450 CVEs

CVEs (450)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2008-0965 1Sun 3Opensolaris SolarisSunos Apr 23, 2026 Aug 8, 2008 N/A· v4 N/A· v3 9.3 HIGH· v2 Multiple format string vulnerabilities in snoop on Sun Solaris 8 through 10 and OpenSolaris before snv_96, when the -o option is omitted, allow remote attackers to execute arbitrary code via format string specifiers in a...Show more Multiple format string vulnerabilities in snoop on Sun Solaris 8 through 10 and OpenSolaris before snv_96, when the -o option is omitted, allow remote attackers to execute arbitrary code via format string specifiers in an SMB packet.Show less
CVE-2008-0964 1Sun 3Opensolaris SolarisSunos Apr 23, 2026 Aug 8, 2008 N/A· v4 N/A· v3 9.3 HIGH· v2 Multiple stack-based buffer overflows in snoop on Sun Solaris 8 through 10 and OpenSolaris before snv_96, when the -o option is omitted, allow remote attackers to execute arbitrary code via a crafted SMB packet.
CVE-2008-3549 1Sun 2Opensolaris Solaris Apr 23, 2026 Aug 7, 2008 N/A· v4 N/A· v3 4.7 MEDIUM· v2 Unspecified vulnerability in the pthread_mutex_reltimedlock_np API in Sun Solaris 10 and OpenSolaris before snv_90 allows local users to cause a denial of service (system hang or panic) via unknown vectors.
CVE-2008-3426 1Sun 3Opensolaris SolarisSunos Apr 23, 2026 Jul 31, 2008 N/A· v4 N/A· v3 2.1 LOW· v2 Unspecified vulnerability in the Solaris Platform Information and Control Library daemon (picld) in Sun Solaris 8 through 10, and OpenSolaris builds snv_01 through snv_95, allows local users to cause a denial of service...Show more Unspecified vulnerability in the Solaris Platform Information and Control Library daemon (picld) in Sun Solaris 8 through 10, and OpenSolaris builds snv_01 through snv_95, allows local users to cause a denial of service via unknown vectors that prevent operation of utilities such as prtdiag, prtpicl, and prtfru.Show less
CVE-2008-2946 1Sun 2Solaris Sunos Apr 23, 2026 Jun 30, 2008 N/A· v4 N/A· v3 7.8 HIGH· v2 The SNMP-DMI mapper subagent daemon (aka snmpXdmid) in Solstice Enterprise Agents in Sun Solaris 8 through 10 allows remote attackers to cause a denial of service (daemon crash) via malformed packets.
CVE-2008-2710 1Sun 3Opensolaris SolarisSunos Apr 23, 2026 Jun 16, 2008 N/A· v4 N/A· v3 7.2 HIGH· v2 Integer signedness error in the ip_set_srcfilter function in the IP Multicast Filter in uts/common/inet/ip/ip_multi.c in the kernel in Sun Solaris 10 and OpenSolaris before snv_92 allows local users to execute arbitrary...Show more Integer signedness error in the ip_set_srcfilter function in the IP Multicast Filter in uts/common/inet/ip/ip_multi.c in the kernel in Sun Solaris 10 and OpenSolaris before snv_92 allows local users to execute arbitrary code in other Solaris Zones via an SIOCSIPMSFILTER IOCTL request with a large value of the imsf->imsf_numsrc field, which triggers an out-of-bounds write of kernel memory. NOTE: this was reported as an integer overflow, but the root cause involves the bypass of a signed comparison.Show less
CVE-2008-2706 1Sun 1Solaris Apr 23, 2026 Jun 16, 2008 N/A· v4 N/A· v3 4.9 MEDIUM· v2 Unspecified vulnerability in the event port implementation in Sun Solaris 10 allows local users to cause a denial of service (panic) by submitting and retrieving user-defined events, probably related to a NULL dereferenc...Show more Unspecified vulnerability in the event port implementation in Sun Solaris 10 allows local users to cause a denial of service (panic) by submitting and retrieving user-defined events, probably related to a NULL dereference.Show less
CVE-2008-2538 1Sun 1Solaris Apr 23, 2026 Jun 3, 2008 N/A· v4 N/A· v3 6.9 MEDIUM· v2 Unspecified vulnerability in crontab on Sun Solaris 8 through 10, and OpenSolaris before snv_93, allows local users to insert cron jobs into the crontab files of arbitrary users via unspecified vectors.
CVE-2008-2418 1Sun 1Solaris Apr 23, 2026 May 23, 2008 N/A· v4 N/A· v3 4.7 MEDIUM· v2 Race condition in the STREAMS Administrative Driver (sad) in Sun Solaris 10 allows local users to cause a denial of service (panic) via unknown vectors.
CVE-2008-2090 1Sun 1Solaris Apr 23, 2026 May 6, 2008 N/A· v4 N/A· v3 7.8 HIGH· v2 Unspecified vulnerability in the SCTP protocol implementation in Sun Solaris 10 allows remote attackers to cause a denial of service (CPU consumption and network traffic amplification) via a crafted SCTP packet.
CVE-2008-2089 1Sun 1Solaris Apr 23, 2026 May 6, 2008 N/A· v4 N/A· v3 7.8 HIGH· v2 Unspecified vulnerability in the SCTP protocol implementation in Sun Solaris 10 allows remote attackers to cause a denial of service (panic) via a crafted SCTP packet.
CVE-2008-1780 1Sun 1Solaris Apr 23, 2026 Apr 14, 2008 N/A· v4 N/A· v3 4.6 MEDIUM· v2 Unspecified vulnerability in the labeled networking functionality in Solaris 10 Trusted Extensions allows applications in separate labeling zones to bypass labeling restrictions via unknown vectors.
CVE-2008-1779 1Sun 1Solaris Apr 23, 2026 Apr 14, 2008 N/A· v4 N/A· v3 6.8 MEDIUM· v2 Sun Solaris 8, 9, and 10 allows "remote privileged" users to cause a denial of service (panic) via unknown vectors related to self encapsulated IP packets.
CVE-2008-1684 1Sun 1Solaris Apr 23, 2026 Apr 6, 2008 N/A· v4 N/A· v3 4.7 MEDIUM· v2 inetd on Sun Solaris 10, when debug logging is enabled, allows local users to write to arbitrary files via a symlink attack on the /var/tmp/inetd.log temporary file.
CVE-2008-1480 1Sun 2Solaris Sunos Apr 23, 2026 Mar 24, 2008 N/A· v4 N/A· v3 4.3 MEDIUM· v2 rpc.metad in Sun Solaris 10 allows remote attackers to cause a denial of service (daemon crash) via a malformed RPC request.
CVE-2008-1356 1Sun 1Solaris Apr 23, 2026 Mar 17, 2008 N/A· v4 N/A· v3 6.3 MEDIUM· v2 Unspecified vulnerability in xscreensaver in Sun Solaris 10 Java Desktop System (JDS), when using the GNOME On-Screen Keyboard (GOK), allows local users to bypass authentication via unknown vectors that cause the screen...Show more Unspecified vulnerability in xscreensaver in Sun Solaris 10 Java Desktop System (JDS), when using the GNOME On-Screen Keyboard (GOK), allows local users to bypass authentication via unknown vectors that cause the screen saver to crash.Show less
CVE-2008-1317 1Sun 1Solaris Apr 23, 2026 Mar 13, 2008 N/A· v4 N/A· v3 4.9 MEDIUM· v2 Unspecified vulnerability in the Inter-Process Communication (IPC) message queue subsystem in Sun Solaris 10 allows local users to cause a denial of service (reboot) via blocked I/O message queues.
CVE-2008-1205 1Sun 1Solaris Apr 23, 2026 Mar 8, 2008 N/A· v4 N/A· v3 4.9 MEDIUM· v2 Unspecified vulnerability in the ipsecah kernel module in Sun Solaris 10, when a key management daemon for IPsec security associations is running, allows local users to cause a denial of service (panic) via unspecified v...Show more Unspecified vulnerability in the ipsecah kernel module in Sun Solaris 10, when a key management daemon for IPsec security associations is running, allows local users to cause a denial of service (panic) via unspecified vectors.Show less
CVE-2008-1115 1Sun 1Solaris Apr 23, 2026 Mar 3, 2008 N/A· v4 N/A· v3 4.9 MEDIUM· v2 Unspecified vulnerability in Sun Solaris 8 directory functions allows local users to cause a denial of service (panic) via an unspecified sequence of system calls or commands.
CVE-2008-1095 1Sun 2Solaris Sunos Apr 23, 2026 Feb 29, 2008 N/A· v4 N/A· v3 6.8 MEDIUM· v2 Unspecified vulnerability in the Internet Protocol (IP) implementation in Sun Solaris 8, 9, and 10 allows remote attackers to bypass intended firewall policies or cause a denial of service (panic) via unknown vectors, po...Show more Unspecified vulnerability in the Internet Protocol (IP) implementation in Sun Solaris 8, 9, and 10 allows remote attackers to bypass intended firewall policies or cause a denial of service (panic) via unknown vectors, possibly related to ICMP packets and IP fragment reassembly.Show less

Previous 1...456...23 Next