Vulnerabilities > SUN > Solaris > 10
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2010-04-21 | CVE-2009-4774 | Local Denial Of Service vulnerability in SUN Opensolaris and Solaris Unspecified vulnerability in Sun Solaris 10 and OpenSolaris snv_49 through snv_117, when 64bit mode is used on the Intel x86 platform and a Linux (lx) branded zone is configured, allows local users to cause a denial of service (panic) via unspecified vectors, a different vulnerability than CVE-2007-6225. | 4.0 |
| 2010-02-09 | CVE-2010-0444 | Credentials Management vulnerability in HP Operations Agent 8.51/8.52/8.53 HP Operations Agent 8.51, 8.52, 8.53, and 8.60 on Solaris 10 uses a blank password for the opc_op account, which allows remote attackers to execute arbitrary code via unspecified vectors. | 10.0 |
| 2009-12-14 | CVE-2009-4314 | Permissions, Privileges, and Access Controls vulnerability in SUN RAY Server Software 4.1 Sun Ray Server Software 4.1 on Solaris 10, when Automatic Multi-Group Hotdesking (AMGH) is enabled, responds to a logout action by immediately logging the user in again, which makes it easier for physically proximate attackers to obtain access to a session by going to an unattended DTU device. | 4.4 |
| 2009-12-03 | CVE-2009-4187 | Cross-Site Scripting vulnerability in SUN Java System Portal Server 6.3.1/7.1/7.2 Multiple cross-site scripting (XSS) vulnerabilities in the Gateway component in Sun Java System Portal Server 6.3.1, 7.1, and 7.2 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors. | 4.3 |
| 2009-11-25 | CVE-2009-4075 | Remote Denial Of Service vulnerability in SUN Opensolaris and Solaris Unspecified vulnerability in the timeout mechanism in sshd in Sun Solaris 10, and OpenSolaris snv_99 through snv_123, allows remote attackers to cause a denial of service (daemon outage) via unknown vectors that trigger a "dangling sshd authentication thread." | 5.0 |
| 2009-11-06 | CVE-2009-3899 | Resource Management Errors vulnerability in SUN Opensolaris and Solaris Memory leak in the Sockets Direct Protocol (SDP) driver in Sun Solaris 10, and OpenSolaris snv_57 through snv_94, allows remote attackers to cause a denial of service (memory consumption) via unspecified vectors. | 7.8 |
| 2009-11-02 | CVE-2009-3839 | Remote Privilege Escalation vulnerability in SUN Opensolaris and Solaris Unspecified vulnerability in the Solaris Trusted Extensions Policy configuration in Sun Solaris 10, and OpenSolaris snv_37 through snv_125, might allow remote attackers to execute arbitrary code by leveraging access to the X server. network sun | 6.8 |
| 2009-10-22 | CVE-2009-3746 | Configuration vulnerability in SUN Solaris 10 XScreenSaver in Sun Solaris 10, when the accessibility feature is enabled, allows physically proximate attackers to obtain sensitive information by reading popup windows, which are displayed even when the screen is locked, a different vulnerability than CVE-2009-1276 and CVE-2009-2711. | 1.9 |
| 2009-10-16 | CVE-2009-3706 | Unspecified vulnerability in SUN Opensolaris and Solaris Unspecified vulnerability in the ZFS filesystem in Sun Solaris 10, and OpenSolaris snv_100 through snv_117, allows local users to bypass intended limitations of the file_chown_self privilege via certain uses of the chown system call. local sun | 4.4 |
| 2009-09-28 | CVE-2009-3432 | Local Information Disclosure vulnerability in SUN Opensolaris and Solaris Unspecified vulnerability in xscreensaver in Sun Solaris 10, and OpenSolaris before snv_112, when Xorg or Xnewt is used and RandR is enabled, allows physically proximate attackers to read a locked screen via unknown vectors related to XRandR resize events. local sun | 1.9 |