Vulnerabilities > SUN
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2009-12-08 | CVE-2009-4226 | Race Condition vulnerability in SUN Opensolaris Race condition in the IP module in the kernel in Sun OpenSolaris snv_106 through snv_124 allows remote attackers to cause a denial of service (NULL pointer dereference and panic) via unspecified vectors related to the (1) tcp_do_getsockname or (2) tcp_do_getpeername function. | 7.1 |
| 2009-12-04 | CVE-2009-4211 | Permissions, Privileges, and Access Controls vulnerability in Disa SRR for Solaris The U.S. | 9.3 |
| 2009-12-03 | CVE-2009-4191 | Local Security vulnerability in Solaris Unspecified vulnerability in the kernel in Sun Solaris 10 and OpenSolaris 2009.06 on the x86-64 platform allows local users to gain privileges via unknown vectors, as demonstrated by the vd_sol_local module in VulnDisco Pack Professional 8.12. | 7.2 |
| 2009-12-03 | CVE-2009-4190 | Denial-Of-Service vulnerability in SUN Opensolaris 2009.06 Unspecified vulnerability in the kernel in Sun OpenSolaris 2009.06 allows remote attackers to cause a denial of service (panic) via unknown vectors, as demonstrated by the vd_solaris2 module in VulnDisco Pack Professional 8.12. | 7.8 |
| 2009-12-03 | CVE-2009-4187 | Cross-Site Scripting vulnerability in SUN Java System Portal Server 6.3.1/7.1/7.2 Multiple cross-site scripting (XSS) vulnerabilities in the Gateway component in Sun Java System Portal Server 6.3.1, 7.1, and 7.2 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors. | 4.3 |
| 2009-11-29 | CVE-2009-4080 | Local Denial of Service vulnerability in Sun Solaris LDAP Client Configuration Cache Daemon Multiple unspecified vulnerabilities in ldap_cachemgr (aka the LDAP client configuration cache daemon) in Sun Solaris 9 and 10, and OpenSolaris before snv_78, allow local users to cause a denial of service (daemon crash) via vectors involving multiple serviceSearchDescriptor attributes and a call to the getldap_lookup function, and unspecified other vectors. | 2.1 |
| 2009-11-25 | CVE-2009-4075 | Remote Denial Of Service vulnerability in SUN Opensolaris and Solaris Unspecified vulnerability in the timeout mechanism in sshd in Sun Solaris 10, and OpenSolaris snv_99 through snv_123, allows remote attackers to cause a denial of service (daemon outage) via unknown vectors that trigger a "dangling sshd authentication thread." | 5.0 |
| 2009-11-16 | CVE-2009-3940 | Unspecified vulnerability in SUN Virtualbox and XVM Virtualbox Unspecified vulnerability in Guest Additions in Sun xVM VirtualBox 1.6.x and 2.0.x before 2.0.12, 2.1.x, and 2.2.x, and Sun VirtualBox before 3.0.10, allows guest OS users to cause a denial of service (memory consumption) on the guest OS via unknown vectors. | 2.1 |
| 2009-11-13 | CVE-2009-3937 | Resource Management Errors vulnerability in SUN Opensolaris Memory leak in Solaris TCP sockets in Sun OpenSolaris snv_106 through snv_126 allows local users to cause a denial of service (kernel memory consumption) via unspecified vectors involving tcp_sendmsg processing "ancillary data." | 4.9 |
| 2009-11-10 | CVE-2009-3923 | Improper Authentication vulnerability in SUN Virtual Desktop Infrastructure and Virtualbox The VirtualBox 2.0.8 and 2.0.10 web service in Sun Virtual Desktop Infrastructure (VDI) 3.0 does not require authentication, which allows remote attackers to obtain unspecified access via vectors involving requests to an Apache HTTP Server. | 7.5 |