Vulnerabilities > SUN > Solaris > 10.0
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2007-03-07 | CVE-2006-7140 | Remote Security vulnerability in Solaris The libike library, as used by in.iked, elfsign, and kcfd in Sun Solaris 9 and 10, when using an RSA key with exponent 3, removes PKCS-1 padding before generating a hash, which allows remote attackers to forge a PKCS #1 v1.5 signature that is signed by that RSA key and prevents libike from correctly verifying X.509 and other certificates that use PKCS #1, a similar issue to CVE-2006-4339. network sun | 5.8 |
| 2007-02-14 | CVE-2007-0914 | Remote Denial of Service vulnerability in SUN Solaris 10.0 Race condition in the TCP subsystem for Solaris 10 allows remote attackers to cause a denial of service (system panic) via unknown vectors. network sun | 7.1 |
| 2007-02-13 | CVE-2007-0895 | Local Security vulnerability in Solaris Race condition in recursive directory deletion with the (1) -r or (2) -R option in rm in Solaris 8 through 10 before 20070208 allows local users to delete files and directories as the user running rm by moving a low-level directory to a higher level as it is being deleted, which causes rm to chdir to a ".." directory that is higher than expected, possibly up to the root file system, a related issue to CVE-2002-0435. | 2.6 |
| 2007-02-02 | CVE-2007-0668 | Local Denial of Service vulnerability in SUN Solaris 10.0 The Loopback Filesystem (LOFS) in Sun Solaris 10 allows local users in a non-global zone to move and rename files in a read-only filesystem, which could lead to a denial of service. | 6.2 |
| 2007-01-31 | CVE-2007-0634 | Remote Denial of Service vulnerability in SUN Solaris 10.0 Unspecified vulnerability in Sun Solaris 10 before 20070130 allows remote attackers to cause a denial of service (system crash) via certain ICMP packets. | 7.8 |
| 2007-01-24 | CVE-2007-0470 | Local Privilege Escalation vulnerability in Sun Solaris Tip Multiple unspecified vulnerabilities in tip in Sun Solaris 8, 9, and 10 allow local users to gain uucp account privileges via unspecified vectors. | 7.2 |
| 2006-12-13 | CVE-2006-6495 | Local vulnerability in Sun Solaris LD.SO Stack-based buffer overflow in ld.so.1 in Sun Solaris 8, 9, and 10 allows local users to execute arbitrary code via large precision padding values in a format string specifier in the format parameter of the doprf function. local sun | 6.6 |
| 2006-12-13 | CVE-2006-6494 | Local vulnerability in Sun Solaris LD.SO Directory traversal vulnerability in ld.so.1 in Sun Solaris 8, 9, and 10 allows local users to execute arbitrary code via a .. local sun | 6.6 |
| 2006-12-04 | CVE-2006-6275 | Race Condition vulnerability in SUN Solaris and Sunos Race condition in the kernel in Sun Solaris 8 through 10 allows local users to cause a denial of service (panic) via unspecified vectors, possibly related to the exitlwps function and SIGKILL and /proc PCAGENT signals. | 4.7 |
| 2006-11-06 | CVE-2006-5726 | Local Denial of Service vulnerability in SUN Solaris 10.0 alloccgblk in the UFS filesystem in Solaris 10 allows local users to cause a denial of service (memory corruption) by mounting crafted UFS filesystems with malformed data structures. | 4.9 |