Vulnerabilities > SUN > Opensolaris > snv.39
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2009-02-09 | CVE-2009-0480 | Numeric Errors vulnerability in SUN Opensolaris and Solaris The IP implementation in Sun Solaris 8 through 10, and OpenSolaris before snv_82, uses an improper arena when allocating minor numbers for sockets, which allows local users to cause a denial of service (32-bit application failure and login outage) by opening a large number of sockets. | 4.9 |
| 2009-01-29 | CVE-2009-0346 | Cryptographic Issues vulnerability in SUN Opensolaris and Solaris The IP-in-IP packet processing implementation in the IPsec and IP stacks in the kernel in Sun Solaris 9 and 10, and OpenSolaris snv_01 though snv_85, allows local users to cause a denial of service (panic) via a self-encapsulated packet that lacks IPsec protection. | 4.9 |
| 2009-01-28 | CVE-2009-0319 | Local Code Execution vulnerability in SUN Opensolaris and Solaris Unspecified vulnerability in the autofs module in the kernel in Sun Solaris 8 through 10, and OpenSolaris before snv_108, allows local users to cause a denial of service (autofs mount outage) or possibly gain privileges via vectors related to "xdr processing problems." local sun | 6.9 |
| 2009-01-27 | CVE-2009-0304 | Remote Denial of Service vulnerability in SUN Opensolaris and Solaris The kernel in Sun Solaris 10 and 11 snv_101b, and OpenSolaris before snv_108, allows remote attackers to cause a denial of service (system crash) via a crafted IPv6 packet, related to an "insufficient validation security vulnerability," as demonstrated by SunOSipv6.c. | 7.8 |
| 2009-01-26 | CVE-2009-0268 | Race Condition vulnerability in SUN Opensolaris and Solaris Race condition in the pseudo-terminal (aka pty) driver module in Sun Solaris 8 through 10, and OpenSolaris before snv_103, allows local users to cause a denial of service (panic) via unspecified vectors related to lack of "properly sequenced code" in ptc and ptsl. | 4.9 |
| 2009-01-26 | CVE-2009-0267 | Improper Input Validation vulnerability in SUN Opensolaris and Solaris libike in Sun Solaris 9 and 10, and OpenSolaris before snv_100, does not properly check packets, which allows remote attackers to cause a denial of service (in.iked daemon crash) via an unspecified IKE packet, a different vulnerability than CVE-2007-2989. | 5.0 |
| 2009-01-15 | CVE-2009-0131 | Local Denial Of Service vulnerability in Sun OpenSolaris 'posix_fallocate(3C)' System Call The UFS implementation in the kernel in Sun OpenSolaris snv_29 through snv_90 allows local users to cause a denial of service (panic) via the single posix_fallocate test in the SUSv3 POSIX test suite, related to an F_ALLOCSP fcntl call. | 4.9 |
| 2009-01-07 | CVE-2009-0069 | Resource Management Errors vulnerability in SUN Opensolaris and Solaris Unspecified vulnerability in the nfs4rename_persistent_fh function in the NFS 4 (aka NFSv4) client in the kernel in Sun Solaris 10 and OpenSolaris before snv_102 allows local users to cause a denial of service (recursive mutex_enter and panic) via unspecified vectors. | 4.9 |
| 2008-12-19 | CVE-2008-5690 | Credentials Management vulnerability in SUN Opensolaris and Solaris The Kerberos credential renewal feature in Sun Solaris 8, 9, and 10, and OpenSolaris build snv_01 through snv_104, allows local users to cause a denial of service (authentication failure) via unspecified vectors related to incorrect cache file permissions, and lack of credential storage by the store_cred function in pam_krb5. | 2.1 |
| 2008-12-19 | CVE-2008-5689 | Resource Management Errors vulnerability in SUN Opensolaris and Solaris tun in IP Tunnel in Solaris 10 and OpenSolaris snv_01 through snv_76 allows local users to cause a denial of service (panic) and possibly execute arbitrary code via a crafted SIOCGTUNPARAM IOCTL request, which triggers a NULL pointer dereference. | 7.2 |