Vulnerabilities > SUN
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2009-07-16 | CVE-2009-2487 | Resource Management Errors vulnerability in SUN Opensolaris and Solaris Use-after-free vulnerability in the frpr_icmp function in the ipfilter (aka IP Filter) subsystem in Sun Solaris 10, and OpenSolaris snv_45 through snv_110, allows remote attackers to cause a denial of service (panic) via unspecified vectors. | 7.8 |
2009-07-16 | CVE-2009-2486 | Unspecified vulnerability in SUN Opensolaris and Solaris Unspecified vulnerability in the SCTP implementation in Sun Solaris 10, and OpenSolaris before snv_120, allows remote attackers to cause a denial of service (panic) via unspecified packets. | 7.8 |
2009-07-14 | CVE-2009-2458 | Remote Denial Of Service vulnerability in SUN Fire Server V215 Unspecified vulnerability in Sun Fire V215 Server, when using XVR-100 graphic cards on system boards with part number 375-3463 and a hardware dash level -04 or later, allows remote attackers to cause a denial of service (panic) via unknown vectors. | 5.4 |
2009-07-13 | CVE-2009-2445 | Information Exposure vulnerability in SUN Java System web Server 6.1/7.0 Oracle iPlanet Web Server (formerly Sun Java System Web Server or Sun ONE Web Server) 6.1 before SP12, and 7.0 through Update 6, when running on Windows, allows remote attackers to read arbitrary JSP files via an alternate data stream syntax, as demonstrated by a .jsp::$DATA URI. | 5.0 |
2009-07-10 | CVE-2009-2430 | Local Privilege Escalation vulnerability in SUN Opensolaris and Solaris Unspecified vulnerability in auditconfig in Sun Solaris 8, 9, 10, and OpenSolaris snv_01 through snv_58, when Solaris Auditing is enabled, allows local users with an RBAC execution profile for auditconfig to gain privileges via unknown attack vectors. | 4.6 |
2009-07-09 | CVE-2009-2387 | Local Denial Of Service vulnerability in Sun OpenSolaris Process File System (proc(4)) Unspecified vulnerability in the proc filesystem in Sun OpenSolaris snv_49 through snv_109 allows local users to cause a denial of service (deadlock and panic) via unknown vectors, related to the ldt_rewrite_syscall function. | 4.9 |
2009-07-05 | CVE-2009-2314 | Race Condition vulnerability in SUN Lightweight Availability Collection Tool 3.0 Race condition in the Sun Lightweight Availability Collection Tool 3.0 on Solaris 7 through 10 allows local users to overwrite arbitrary files via unspecified vectors. | 2.1 |
2009-07-02 | CVE-2009-2297 | Unspecified vulnerability in SUN Opensolaris and Solaris Unspecified vulnerability in the udp subsystem in the kernel in Sun Solaris 10, and OpenSolaris snv_90 through snv_108, when Solaris Trusted Extensions is enabled, allows remote attackers to cause a denial of service (panic) via unspecified vectors involving the crgetlabel function, related to a "TX panic." NOTE: this issue exists because of a regression in earlier kernel patches. network sun | 7.1 |
2009-07-02 | CVE-2009-2296 | Unspecified vulnerability in SUN Opensolaris and Solaris The NFSv4 server kernel module in Sun Solaris 10, and OpenSolaris before snv_119, does not properly implement the nfs_portmon setting, which allows remote attackers to access shares, and read, create, and modify arbitrary files, via unspecified vectors. | 10.0 |
2009-07-01 | CVE-2009-2283 | Cross-Site Scripting vulnerability in SUN Java web Console and Solaris Multiple cross-site scripting (XSS) vulnerabilities in the help jsp scripts in Sun Java Web Console 3.0.2 through 3.0.5, and Sun Java Web Console in Solaris 10, allow remote attackers to inject arbitrary web script or HTML via unspecified vectors. | 4.3 |