Vulnerabilities > SUN
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2009-08-28 | CVE-2009-3000 | Resource Management Errors vulnerability in SUN Opensolaris and Solaris The sockfs module in the kernel in Sun Solaris 10 and OpenSolaris snv_41 through snv_122, when Network Cache Accelerator (NCA) logging is enabled, allows remote attackers to cause a denial of service (panic) via unspecified web-server traffic that triggers a NULL pointer dereference in the nl7c_http_log function, related to "improper http response handling." | 7.1 |
2009-08-27 | CVE-2009-2972 | Resource Management Errors vulnerability in SUN Solaris 8/9 in.lpd in the print service in Sun Solaris 8 and 9 allows remote attackers to cause a denial of service (memory consumption) via unspecified vectors that trigger a "fork()/exec() bomb." | 7.8 |
2009-08-24 | CVE-2009-2952 | Local Denial Of Service vulnerability in SUN Opensolaris and Solaris Unspecified vulnerability in the pollwakeup function in Sun Solaris 10, and OpenSolaris before snv_51, allows local users to cause a denial of service (panic) via unknown vectors. | 4.9 |
2009-08-21 | CVE-2009-2912 | Local Denial Of Service vulnerability in SUN Opensolaris and Solaris The (1) sendfile and (2) sendfilev functions in Sun Solaris 8 through 10, and OpenSolaris before snv_110, allow local users to cause a denial of service (panic) via vectors related to vnode function calls. | 4.9 |
2009-08-18 | CVE-2009-2856 | Information Exposure vulnerability in SUN Virtual Desktop Infrastructure 3.0 Sun Virtual Desktop Infrastructure (VDI) 3.0, when anonymous binding is enabled, does not properly handle a client's attempt to establish an authenticated and encrypted connection, which might allow remote attackers to read cleartext VDI configuration-data requests by sniffing LDAP sessions on the network. | 3.5 |
2009-08-11 | CVE-2009-2416 | Use After Free vulnerability in multiple products Multiple use-after-free vulnerabilities in libxml2 2.5.10, 2.6.16, 2.6.26, 2.6.27, and 2.6.32, and libxml 1.8.17, allow context-dependent attackers to cause a denial of service (application crash) via crafted (1) Notation or (2) Enumeration attribute types in an XML file, as demonstrated by the Codenomicon XML fuzzing framework. | 6.5 |
2009-08-10 | CVE-2009-2724 | Race Condition vulnerability in SUN Java SE Race condition in the java.lang package in Sun Java SE 5.0 before Update 20 has unknown impact and attack vectors, related to a "3Y Race condition in reflection checks." | 9.3 |
2009-08-10 | CVE-2009-2723 | Unspecified vulnerability in SUN Java SE Unspecified vulnerability in deserialization in the Provider class in Sun Java SE 5.0 before Update 20 has unknown impact and attack vectors, aka BugId 6444262. | 10.0 |
2009-08-10 | CVE-2009-2722 | Unspecified vulnerability in SUN Java SE Multiple unspecified vulnerabilities in the Provider class in Sun Java SE 5.0 before Update 20 have unknown impact and attack vectors, aka BugId 6429594. | 10.0 |
2009-08-10 | CVE-2009-2721 | Unspecified vulnerability in SUN Java SE Multiple unspecified vulnerabilities in the Provider class in Sun Java SE 5.0 before Update 20 have unknown impact and attack vectors, aka BugId 6406003. | 10.0 |