Vulnerabilities > SUN > Opensolaris > snv.96
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2009-03-16 | CVE-2009-0913 | Local Denial Of Service vulnerability in SUN Opensolaris and Solaris Unspecified vulnerability in the keysock kernel module in Solaris 10 and OpenSolaris builds snv_01 through snv_108 allows local users to cause a denial of service (system panic) via unknown vectors related to PF_KEY socket, probably related to setting socket options. local sun | 4.7 |
2009-03-11 | CVE-2009-0873 | Permissions, Privileges, and Access Controls vulnerability in SUN Opensolaris, Solaris and Sunos The NFS daemon (aka nfsd) in Sun Solaris 10 and OpenSolaris before snv_106, when NFSv3 is used, does not properly implement combinations of security modes, which allows remote attackers to bypass intended access restrictions and read or modify files, as demonstrated by a combination of the sec=sys and sec=krb5 security modes, related to modes that "override each other." | 6.8 |
2009-03-11 | CVE-2009-0872 | Permissions, Privileges, and Access Controls vulnerability in SUN Opensolaris and Solaris The NFS server in Sun Solaris 10, and OpenSolaris before snv_111, does not properly implement the AUTH_NONE (aka sec=none) security mode in combination with other security modes, which allows remote attackers to bypass intended access restrictions and read or modify files, as demonstrated by a combination of the AUTH_NONE and AUTH_SYS security modes. | 6.8 |
2009-03-10 | CVE-2009-0870 | Resource Management Errors vulnerability in SUN Opensolaris and Solaris The NFSv4 Server module in the kernel in Sun Solaris 10, and OpenSolaris before snv_111, allow local users to cause a denial of service (infinite loop and system hang) by accessing an hsfs filesystem that is shared through NFSv4, related to the rfs4_op_readdir function. | 4.7 |
2009-03-06 | CVE-2009-0838 | Resource Management Errors vulnerability in SUN Opensolaris and Sunos The crypto pseudo device driver in Sun Solaris 10, and OpenSolaris snv_88 through snv_102, does not properly free memory, which allows local users to cause a denial of service (panic) via unspecified vectors, related to the vmem_hash_delete function. | 4.9 |
2009-02-08 | CVE-2009-0477 | Permissions, Privileges, and Access Controls vulnerability in SUN Opensolaris Unspecified vulnerability in the process (aka proc) filesystem in Sun OpenSolaris snv_85 through snv_100 allows local users to gain privileges via vectors related to the contract filesystem. | 7.2 |
2009-01-28 | CVE-2009-0319 | Local Code Execution vulnerability in SUN Opensolaris and Solaris Unspecified vulnerability in the autofs module in the kernel in Sun Solaris 8 through 10, and OpenSolaris before snv_108, allows local users to cause a denial of service (autofs mount outage) or possibly gain privileges via vectors related to "xdr processing problems." local sun | 6.9 |
2009-01-27 | CVE-2009-0304 | Remote Denial of Service vulnerability in SUN Opensolaris and Solaris The kernel in Sun Solaris 10 and 11 snv_101b, and OpenSolaris before snv_108, allows remote attackers to cause a denial of service (system crash) via a crafted IPv6 packet, related to an "insufficient validation security vulnerability," as demonstrated by SunOSipv6.c. | 7.8 |
2009-01-26 | CVE-2009-0268 | Race Condition vulnerability in SUN Opensolaris and Solaris Race condition in the pseudo-terminal (aka pty) driver module in Sun Solaris 8 through 10, and OpenSolaris before snv_103, allows local users to cause a denial of service (panic) via unspecified vectors related to lack of "properly sequenced code" in ptc and ptsl. | 4.9 |
2009-01-26 | CVE-2009-0267 | Improper Input Validation vulnerability in SUN Opensolaris and Solaris libike in Sun Solaris 9 and 10, and OpenSolaris before snv_100, does not properly check packets, which allows remote attackers to cause a denial of service (in.iked daemon crash) via an unspecified IKE packet, a different vulnerability than CVE-2007-2989. | 5.0 |