Vulnerabilities > SUN > Opensolaris > snv.37

DATE CVE VULNERABILITY TITLE RISK
2009-11-29 CVE-2009-4080 Local Denial of Service vulnerability in Sun Solaris LDAP Client Configuration Cache Daemon
Multiple unspecified vulnerabilities in ldap_cachemgr (aka the LDAP client configuration cache daemon) in Sun Solaris 9 and 10, and OpenSolaris before snv_78, allow local users to cause a denial of service (daemon crash) via vectors involving multiple serviceSearchDescriptor attributes and a call to the getldap_lookup function, and unspecified other vectors.
local
low complexity
sun
2.1
2009-11-02 CVE-2009-3839 Remote Privilege Escalation vulnerability in SUN Opensolaris and Solaris
Unspecified vulnerability in the Solaris Trusted Extensions Policy configuration in Sun Solaris 10, and OpenSolaris snv_37 through snv_125, might allow remote attackers to execute arbitrary code by leveraging access to the X server.
network
sun
6.8
2009-09-28 CVE-2009-3432 Local Information Disclosure vulnerability in SUN Opensolaris and Solaris
Unspecified vulnerability in xscreensaver in Sun Solaris 10, and OpenSolaris before snv_112, when Xorg or Xnewt is used and RandR is enabled, allows physically proximate attackers to read a locked screen via unknown vectors related to XRandR resize events.
local
sun
1.9
2009-09-24 CVE-2009-3390 Local Security vulnerability in OpenSolaris
Multiple unspecified vulnerabilities in the (1) iscsiadm and (2) iscsitadm programs in Sun Solaris 10, and OpenSolaris snv_28 through snv_109, allow local users with certain RBAC execution profiles to gain privileges via unknown vectors related to the libima library.
local
low complexity
sun
7.2
2009-09-14 CVE-2009-3183 Buffer Errors vulnerability in SUN Opensolaris and Solaris
Heap-based buffer overflow in w in Sun Solaris 8 through 10, and OpenSolaris before snv_124, allows local users to gain privileges via unspecified vectors.
local
low complexity
sun CWE-119
7.2
2009-09-10 CVE-2009-3164 Denial-Of-Service vulnerability in SUN Opensolaris and Solaris
Unspecified vulnerability in the IPv6 networking stack in Sun Solaris 10, and OpenSolaris snv_01 through snv_82 and snv_111 through snv_122, when a Cassini GigaSwift Ethernet Adapter (aka CE) interface is used, allows remote attackers to cause a denial of service (panic) via vectors involving jumbo frames.
network
sun
7.1
2009-08-24 CVE-2009-2952 Local Denial Of Service vulnerability in SUN Opensolaris and Solaris
Unspecified vulnerability in the pollwakeup function in Sun Solaris 10, and OpenSolaris before snv_51, allows local users to cause a denial of service (panic) via unknown vectors.
local
low complexity
sun
4.9
2009-08-21 CVE-2009-2912 Local Denial Of Service vulnerability in SUN Opensolaris and Solaris
The (1) sendfile and (2) sendfilev functions in Sun Solaris 8 through 10, and OpenSolaris before snv_110, allow local users to cause a denial of service (panic) via vectors related to vnode function calls.
local
low complexity
sun
4.9
2009-08-07 CVE-2009-2711 Information Exposure vulnerability in multiple products
XScreenSaver in Sun Solaris 9 and 10, OpenSolaris before snv_120, and X11 6.4.1 for Solaris 8, when the Xorg or Xnewt server is used, allows physically proximate attackers to obtain sensitive information by reading popup windows, which are displayed even when the screen is locked, a different vulnerability than CVE-2009-1276.
local
low complexity
sun x-org CWE-200
4.9
2009-08-03 CVE-2009-2652 Remote Denial of Service vulnerability in SUN Opensolaris and Solaris
Unspecified vulnerability in Solaris Trusted Extensions in Sun Solaris 10, and OpenSolaris snv_37 through snv_120, allows remote attackers to cause a denial of service (panic) via vectors involving the parsing of labeled packets.
network
low complexity
sun
6.8