Vulnerabilities > SUN
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2011-04-20 | CVE-2011-0813 | Local Kernel vulnerability in Oracle Solaris Unspecified vulnerability in Oracle Solaris 8, 9, 10, and 11 Express allows local users to affect availability via unknown vectors related to Kernel, a different vulnerability than CVE-2012-0098. | 4.9 |
2011-04-20 | CVE-2011-0812 | Local Solaris vulnerability in Oracle Solaris Unspecified vulnerability in the Solaris component in Oracle Solaris 8, 9, 10, and 11 Express allows local users to affect availability via unknown vectors related to Kernel. | 3.7 |
2011-04-20 | CVE-2011-0807 | Unspecified vulnerability in Oracle Sun GlassFish Enterprise Server 2.1, 2.1.1, and 3.0.1, and Sun Java System Application Server 9.1, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Administration. | 10.0 |
2011-04-20 | CVE-2011-0801 | Local vulnerability in Oracle Solaris Unspecified vulnerability in Oracle Solaris 10 and 11 Express allows local users to affect confidentiality and integrity via unknown vectors related to cp. | 3.6 |
2011-04-20 | CVE-2011-0800 | Local vulnerability in Oracle Sun Solaris Unspecified vulnerability in the Solaris component in Oracle Solaris 8, 9, 10, and 11 Express allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Administration Utilities. | 6.5 |
2011-04-20 | CVE-2011-0790 | Local vulnerability in Oracle Solaris Unspecified vulnerability in Oracle Solaris 9 and 10 allows local users to affect confidentiality via unknown vectors related to wbem. | 1.7 |
2011-04-19 | CVE-2011-0412 | Credentials Management vulnerability in SUN Sunos 5.10/5.8/5.9 Oracle Solaris 8, 9, and 10 stores back-out patch files (undo.Z) unencrypted with world-readable permissions under /var/sadm/pkg/, which allows local users to obtain password hashes and conduct brute force password guessing attacks. | 2.1 |
2011-02-17 | CVE-2010-4476 | Remote Security vulnerability in SUN Jdk, JRE and SDK The Double.parseDouble method in Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, 5.0 Update 27 and earlier, and 1.4.2_29 and earlier, as used in OpenJDK, Apache, JBossweb, and other products, allows remote attackers to cause a denial of service via a crafted string that triggers an infinite loop of estimations during conversion to a double-precision binary floating-point number, as demonstrated using 2.2250738585072012e-308. | 5.0 |
2011-02-17 | CVE-2010-4475 | Remote Java Runtime Environment vulnerability in SUN Jdk, JRE and SDK Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, 5.0 Update 27 and earlier, and 1.4.2_29 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality via unknown vectors related to Deployment, a different vulnerability than CVE-2010-4447. network sun | 4.3 |
2011-02-17 | CVE-2010-4474 | Remote Java DB vulnerability in SUN JDK and JRE Unspecified vulnerability in the Java DB component in Oracle Java SE and Java for Business 6 Update 23, and, and earlier allows local users to affect confidentiality via unknown vectors related to Security, a similar vulnerability to CVE-2009-4269. | 2.1 |