Vulnerabilities > SUN > Opensolaris
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2011-10-05 | CVE-2008-7300 | Permissions, Privileges, and Access Controls vulnerability in SUN Opensolaris and Sunos The labeled networking implementation in Solaris Trusted Extensions in Sun Solaris 10 and OpenSolaris snv_39 through snv_67, when a labeled zone is in the installed state, allows remote authenticated users to bypass a Mandatory Access Control (MAC) policy and obtain access to the global zone. | 8.5 |
| 2010-04-21 | CVE-2009-4774 | Local Denial Of Service vulnerability in SUN Opensolaris and Solaris Unspecified vulnerability in Sun Solaris 10 and OpenSolaris snv_49 through snv_117, when 64bit mode is used on the Intel x86 platform and a Linux (lx) branded zone is configured, allows local users to cause a denial of service (panic) via unspecified vectors, a different vulnerability than CVE-2007-6225. | 4.0 |
| 2010-02-05 | CVE-2010-0559 | Configuration vulnerability in SUN Opensolaris The default configuration of Oracle OpenSolaris snv_91 through snv_131 allows attackers to have an unspecified impact via vectors related to using kclient to join a Windows Active Directory domain. | 7.5 |
| 2010-02-05 | CVE-2010-0558 | Configuration vulnerability in SUN Opensolaris The default configuration of Oracle OpenSolaris snv_77 through snv_131 allows attackers to have an unspecified impact via vectors related to using smbadm to join a Windows Active Directory domain. | 7.5 |
| 2010-02-03 | CVE-2010-0453 | Improper Input Validation vulnerability in SUN Opensolaris and Solaris The ucode_ioctl function in intel/io/ucode_drv.c in Sun Solaris 10 and OpenSolaris snv_69 through snv_133, when running on x86 architectures, allows local users to cause a denial of service (panic) via a request with a 0 size value to the UCODE_GET_VERSION IOCTL, which triggers a NULL pointer dereference in the ucode_get_rev function, related to retrieval of the microcode revision. | 4.9 |
| 2010-01-08 | CVE-2010-0271 | Permissions, Privileges, and Access Controls vulnerability in SUN Opensolaris hald in Sun OpenSolaris snv_51 through snv_130 does not have the proc_audit privilege during unspecified attempts to write to the auditing log, which makes it easier for physically proximate attackers to avoid detection of changes to the set of connected hardware devices supporting the Hardware Abstraction Layer (HAL) specification. | 4.6 |
| 2009-12-08 | CVE-2009-4226 | Race Condition vulnerability in SUN Opensolaris Race condition in the IP module in the kernel in Sun OpenSolaris snv_106 through snv_124 allows remote attackers to cause a denial of service (NULL pointer dereference and panic) via unspecified vectors related to the (1) tcp_do_getsockname or (2) tcp_do_getpeername function. | 7.1 |
| 2009-12-03 | CVE-2009-4191 | Local Security vulnerability in Solaris Unspecified vulnerability in the kernel in Sun Solaris 10 and OpenSolaris 2009.06 on the x86-64 platform allows local users to gain privileges via unknown vectors, as demonstrated by the vd_sol_local module in VulnDisco Pack Professional 8.12. | 7.2 |
| 2009-12-03 | CVE-2009-4190 | Denial-Of-Service vulnerability in SUN Opensolaris 2009.06 Unspecified vulnerability in the kernel in Sun OpenSolaris 2009.06 allows remote attackers to cause a denial of service (panic) via unknown vectors, as demonstrated by the vd_solaris2 module in VulnDisco Pack Professional 8.12. | 7.8 |
| 2009-11-29 | CVE-2009-4080 | Local Denial of Service vulnerability in Sun Solaris LDAP Client Configuration Cache Daemon Multiple unspecified vulnerabilities in ldap_cachemgr (aka the LDAP client configuration cache daemon) in Sun Solaris 9 and 10, and OpenSolaris before snv_78, allow local users to cause a denial of service (daemon crash) via vectors involving multiple serviceSearchDescriptor attributes and a call to the getldap_lookup function, and unspecified other vectors. | 2.1 |