Vulnerabilities > SUN > Solaris > 10
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2009-07-16 | CVE-2009-2486 | Unspecified vulnerability in SUN Opensolaris and Solaris Unspecified vulnerability in the SCTP implementation in Sun Solaris 10, and OpenSolaris before snv_120, allows remote attackers to cause a denial of service (panic) via unspecified packets. | 7.8 |
| 2009-07-10 | CVE-2009-2430 | Local Privilege Escalation vulnerability in SUN Opensolaris and Solaris Unspecified vulnerability in auditconfig in Sun Solaris 8, 9, 10, and OpenSolaris snv_01 through snv_58, when Solaris Auditing is enabled, allows local users with an RBAC execution profile for auditconfig to gain privileges via unknown attack vectors. | 4.6 |
| 2009-07-02 | CVE-2009-2296 | Unspecified vulnerability in SUN Opensolaris and Solaris The NFSv4 server kernel module in Sun Solaris 10, and OpenSolaris before snv_119, does not properly implement the nfs_portmon setting, which allows remote attackers to access shares, and read, create, and modify arbitrary files, via unspecified vectors. | 10.0 |
| 2009-07-01 | CVE-2009-2283 | Cross-Site Scripting vulnerability in SUN Java web Console and Solaris Multiple cross-site scripting (XSS) vulnerabilities in the help jsp scripts in Sun Java Web Console 3.0.2 through 3.0.5, and Sun Java Web Console in Solaris 10, allow remote attackers to inject arbitrary web script or HTML via unspecified vectors. | 4.3 |
| 2009-06-19 | CVE-2009-2137 | Resource Management Errors vulnerability in SUN Opensolaris and Solaris Memory leak in the Ultra-SPARC T2 crypto provider device driver (aka n2cp) in Sun Solaris 10, and OpenSolaris snv_54 through snv_112, allows context-dependent attackers to cause a denial of service (memory consumption) via unspecified vectors related to a large keylen value. | 7.8 |
| 2009-06-11 | CVE-2009-2029 | Remote Denial Of Service vulnerability in SUN Opensolaris and Solaris Unspecified vulnerability in rpc.nisd in Sun Solaris 8 through 10, and OpenSolaris before snv_104, allows remote authenticated users to cause a denial of service (NIS+ daemon hang) via unspecified vectors related to NIS+ callbacks. | 5.0 |
| 2009-06-05 | CVE-2009-1933 | Credentials Management vulnerability in SUN Opensolaris and Solaris Kerberos in Sun Solaris 8, 9, and 10, and OpenSolaris before snv_117, does not properly manage credential caches, which allows local users to access Kerberized NFS mount points and Kerberized NFS shares via unspecified vectors. | 4.7 |
| 2009-04-29 | CVE-2009-1478 | Local Denial of Service vulnerability in SUN Opensolaris and Solaris Multiple unspecified vulnerabilities in the DTrace ioctl handlers in Sun Solaris 10, and OpenSolaris before snv_114, allow local users to cause a denial of service (panic) via unknown vectors. | 4.9 |
| 2009-04-09 | CVE-2009-1276 | Information Exposure vulnerability in SUN Opensolaris and Solaris XScreenSaver in Sun Solaris 10 and OpenSolaris before snv_109, and Solaris 8 and 9 with GNOME 2.0 or 2.0.2, allows physically proximate attackers to obtain sensitive information by reading popup windows, which are displayed even when the screen is locked, as demonstrated by Thunderbird new-mail notifications. | 2.1 |
| 2009-04-01 | CVE-2009-1207 | Race Condition vulnerability in SUN Opensolaris and Solaris Race condition in the dircmp script in Sun Solaris 8 through 10, and OpenSolaris snv_01 through snv_111, allows local users to overwrite arbitrary files, probably involving a symlink attack on temporary files. | 4.4 |