Vulnerabilities > SUN > Opensolaris > snv.47
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2009-01-15 | CVE-2009-0131 | Local Denial Of Service vulnerability in Sun OpenSolaris 'posix_fallocate(3C)' System Call The UFS implementation in the kernel in Sun OpenSolaris snv_29 through snv_90 allows local users to cause a denial of service (panic) via the single posix_fallocate test in the SUSv3 POSIX test suite, related to an F_ALLOCSP fcntl call. | 4.9 |
| 2009-01-07 | CVE-2009-0069 | Resource Management Errors vulnerability in SUN Opensolaris and Solaris Unspecified vulnerability in the nfs4rename_persistent_fh function in the NFS 4 (aka NFSv4) client in the kernel in Sun Solaris 10 and OpenSolaris before snv_102 allows local users to cause a denial of service (recursive mutex_enter and panic) via unspecified vectors. | 4.9 |
| 2008-12-19 | CVE-2008-5690 | Credentials Management vulnerability in SUN Opensolaris and Solaris The Kerberos credential renewal feature in Sun Solaris 8, 9, and 10, and OpenSolaris build snv_01 through snv_104, allows local users to cause a denial of service (authentication failure) via unspecified vectors related to incorrect cache file permissions, and lack of credential storage by the store_cred function in pam_krb5. | 2.1 |
| 2008-12-19 | CVE-2008-5689 | Resource Management Errors vulnerability in SUN Opensolaris and Solaris tun in IP Tunnel in Solaris 10 and OpenSolaris snv_01 through snv_76 allows local users to cause a denial of service (panic) and possibly execute arbitrary code via a crafted SIOCGTUNPARAM IOCTL request, which triggers a NULL pointer dereference. | 7.2 |
| 2008-12-19 | CVE-2008-5684 | Resource Management Errors vulnerability in SUN Opensolaris and Solaris Unspecified vulnerability in the X Inter Client Exchange library (aka libICE) in Sun Solaris 8 through 10 and OpenSolaris before snv_85 allows context-dependent attackers to cause a denial of service (application crash), as demonstrated by a port scan that triggers a segmentation violation in the Gnome session manager (aka gnome-session). | 5.0 |
| 2008-12-17 | CVE-2008-5661 | Resource Management Errors vulnerability in SUN Opensolaris and Solaris The IPv4 Forwarding feature in Sun Solaris 10 and OpenSolaris snv_47 through snv_82, with certain patches installed, allows remote attackers to cause a denial of service (panic) via unknown vectors that trigger a NULL pointer dereference. | 5.4 |
| 2008-11-18 | CVE-2008-5133 | Permissions, Privileges, and Access Controls vulnerability in SUN Opensolaris and Solaris ipnat in IP Filter in Sun Solaris 10 and OpenSolaris before snv_96, when running on a DNS server with Network Address Translation (NAT) configured, improperly changes the source port of a packet when the destination port is the DNS port, which allows remote attackers to bypass an intended CVE-2008-1447 protection mechanism and spoof the responses to DNS queries sent by named. | 5.8 |
| 2008-11-10 | CVE-2008-5010 | Remote Code Execution vulnerability in SUN Opensolaris and Solaris in.dhcpd in the DHCP implementation in Sun Solaris 8 through 10, and OpenSolaris before snv_103, allows remote attackers to cause a denial of service (assertion failure and daemon exit) via unknown DHCP requests related to the "number of offers," aka Bug ID 6713805. | 10.0 |
| 2008-09-22 | CVE-2008-4160 | Resource Management Errors vulnerability in SUN Opensolaris and Solaris Unspecified vulnerability in the UFS module in Sun Solaris 8 through 10 and OpenSolaris allows local users to cause a denial of service (NULL pointer dereference and kernel panic) via unknown vectors related to the Solaris Access Control List (ACL) implementation. | 4.7 |
| 2008-08-27 | CVE-2008-3838 | Improper Input Validation vulnerability in SUN Opensolaris and Solaris Unspecified vulnerability in the NFS Remote Procedure Calls (RPC) zones implementation in Sun Solaris 10 and OpenSolaris before snv_88 allows local administrators of non-global zones to read and modify NFS traffic for arbitrary non-global zones, possibly leading to file modifications or a denial of service. | 7.2 |