Vulnerabilities > SUN > Solaris > 10.0
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2005-11-18 | CVE-2005-3674 | Denial Of Service vulnerability in SUN Solaris 10.0/9.0 The Internet Key Exchange version 1 (IKEv1) implementation in the libike library in Sun Solaris 9 and 10 allows remote attackers to cause a denial of service (in.iked crash) via certain crafted IKE packets, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1. | 7.8 |
| 2005-11-01 | CVE-2005-3398 | Information Exposure vulnerability in SUN Solaris and Sunos The default configuration of the web server for the Solaris Management Console (SMC) in Solaris 8, 9, and 10 enables the HTTP TRACE method, which could allow remote attackers to obtain sensitive information such as cookies and authentication data from HTTP headers. | 4.3 |
| 2005-10-17 | CVE-2005-3250 | Local Denial Of Service vulnerability in SUN Solaris 10.0 Unknown vulnerability in Solaris 10 allows local users to cause a denial of service (panic) via unknown vectors related to the "/proc" filesystem, which trigger a null dereference. | 2.1 |
| 2005-10-14 | CVE-2005-3238 | Denial-Of-Service vulnerability in Sun Solaris Multiple unspecified vulnerabilities in Solaris 10 SCTP Socket Option Processing allows local users to cause a denial of service (panic) via unspecified attack vectors. | 2.1 |
| 2005-09-28 | CVE-2005-3099 | Local Security vulnerability in Solaris Unspecified vulnerability in the (1) Xsun and (2) Xprt commands in Solaris 7, 8, 9, and 10 allows local users to execute arbitrary code. | 4.6 |
| 2005-09-20 | CVE-2005-3001 | Denial-Of-Service vulnerability in SUN Solaris 10.0 Unspecified vulnerability in the "tl" driver in Solaris 10 allows local users to cause a denial of service (panic) via unknown vectors. | 2.1 |
| 2005-09-08 | CVE-2005-2870 | Remote Security vulnerability in SUN Solaris 10.0 Unknown vulnerability in the net-svc script on Solaris 10 allows remote authenticated users to execute arbitrary code on a DHCP client via certain DHCP responses. | 7.5 |
| 2005-06-29 | CVE-2005-2072 | Permissions, Privileges, and Access Controls vulnerability in SUN Solaris and Sunos The runtime linker (ld.so) in Solaris 8, 9, and 10 trusts the LD_AUDIT environment variable in setuid or setgid programs, which allows local users to gain privileges by (1) modifying LD_AUDIT to reference malicious code and possibly (2) using a long value for LD_AUDIT. | 7.2 |
| 2005-06-29 | CVE-2005-2071 | Permissions, Privileges, and Access Controls vulnerability in SUN Solaris 10.0 traceroute in Sun Solaris 10 on x86 systems allows local users to execute arbitrary code with PRIV_NET_RAWACCESS privileges via (1) a large number of -g arguments or (2) a malformed -s argument with a trailing . | 4.6 |
| 2005-06-09 | CVE-2005-1887 | Local Security vulnerability in SUN Solaris 10.0 Unknown vulnerability in the Sun Solaris C library (libc and libproject) in Solaris 10 allows local users to gain privileges. | 4.6 |