Vulnerabilities > SUN > Opensolaris > snv.75
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2008-12-19 | CVE-2008-5689 | Resource Management Errors vulnerability in SUN Opensolaris and Solaris tun in IP Tunnel in Solaris 10 and OpenSolaris snv_01 through snv_76 allows local users to cause a denial of service (panic) and possibly execute arbitrary code via a crafted SIOCGTUNPARAM IOCTL request, which triggers a NULL pointer dereference. | 7.2 |
| 2008-12-19 | CVE-2008-5684 | Resource Management Errors vulnerability in SUN Opensolaris and Solaris Unspecified vulnerability in the X Inter Client Exchange library (aka libICE) in Sun Solaris 8 through 10 and OpenSolaris before snv_85 allows context-dependent attackers to cause a denial of service (application crash), as demonstrated by a port scan that triggers a segmentation violation in the Gnome session manager (aka gnome-session). | 5.0 |
| 2008-12-17 | CVE-2008-5661 | Resource Management Errors vulnerability in SUN Opensolaris and Solaris The IPv4 Forwarding feature in Sun Solaris 10 and OpenSolaris snv_47 through snv_82, with certain patches installed, allows remote attackers to cause a denial of service (panic) via unknown vectors that trigger a NULL pointer dereference. | 5.4 |
| 2008-11-18 | CVE-2008-5133 | Permissions, Privileges, and Access Controls vulnerability in SUN Opensolaris and Solaris ipnat in IP Filter in Sun Solaris 10 and OpenSolaris before snv_96, when running on a DNS server with Network Address Translation (NAT) configured, improperly changes the source port of a packet when the destination port is the DNS port, which allows remote attackers to bypass an intended CVE-2008-1447 protection mechanism and spoof the responses to DNS queries sent by named. | 5.8 |
| 2008-11-17 | CVE-2008-5111 | Local Denial Of Service vulnerability in SUN Opensolaris and Solaris Unspecified vulnerability in the socket function in Sun Solaris 10 and OpenSolaris snv_57 through snv_91, when InfiniBand hardware is not installed, allows local users to cause a denial of service (panic) via unknown vectors, related to the socksdpv_close function. local sun | 4.7 |
| 2008-11-10 | CVE-2008-5010 | Remote Code Execution vulnerability in SUN Opensolaris and Solaris in.dhcpd in the DHCP implementation in Sun Solaris 8 through 10, and OpenSolaris before snv_103, allows remote attackers to cause a denial of service (assertion failure and daemon exit) via unknown DHCP requests related to the "number of offers," aka Bug ID 6713805. | 10.0 |
| 2008-09-22 | CVE-2008-4160 | Resource Management Errors vulnerability in SUN Opensolaris and Solaris Unspecified vulnerability in the UFS module in Sun Solaris 8 through 10 and OpenSolaris allows local users to cause a denial of service (NULL pointer dereference and kernel panic) via unknown vectors related to the Solaris Access Control List (ACL) implementation. | 4.7 |
| 2008-08-27 | CVE-2008-3839 | Local Denial of Service vulnerability in SUN Opensolaris and Solaris Unspecified vulnerability in the NFS module in the kernel in Sun Solaris 10 and OpenSolaris snv_59 through snv_87, when configured as an NFS server without the nodevices option, allows local users to cause a denial of service (panic) via unspecified vectors. local sun | 4.7 |
| 2008-08-27 | CVE-2008-3838 | Improper Input Validation vulnerability in SUN Opensolaris and Solaris Unspecified vulnerability in the NFS Remote Procedure Calls (RPC) zones implementation in Sun Solaris 10 and OpenSolaris before snv_88 allows local administrators of non-global zones to read and modify NFS traffic for arbitrary non-global zones, possibly leading to file modifications or a denial of service. | 7.2 |
| 2008-08-13 | CVE-2008-3666 | Local Denial of Service vulnerability in SUN Opensolaris, Solaris and Sunos Unspecified vulnerability in Sun Solaris 10 and OpenSolaris before snv_96 allows (1) context-dependent attackers to cause a denial of service (panic) via vectors involving creation of a crafted file and use of the sendfilev system call, as demonstrated by a file served by an Apache 2.2.x web server with EnableSendFile configured; and (2) local users to cause a denial of service (panic) via a call to the sendfile system call, as reachable through the sendfilev library. network sun | 7.1 |