Vulnerabilities > SUN > Solaris > 10
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2009-03-17 | CVE-2009-0926 | Resource Management Errors vulnerability in SUN Opensolaris and Solaris Unspecified vulnerability in the UFS filesystem functionality in Sun OpenSolaris snv_86 through snv_91, when running in 32-bit mode on x86 systems, allows local users to cause a denial of service (panic) via unknown vectors related to the (1) ufs_getpage and (2) ufs_putapage routines, aka CR 6679732. | 4.9 |
| 2009-03-16 | CVE-2009-0913 | Local Denial Of Service vulnerability in SUN Opensolaris and Solaris Unspecified vulnerability in the keysock kernel module in Solaris 10 and OpenSolaris builds snv_01 through snv_108 allows local users to cause a denial of service (system panic) via unknown vectors related to PF_KEY socket, probably related to setting socket options. local sun | 4.7 |
| 2009-03-12 | CVE-2009-0875 | Race Condition vulnerability in SUN Opensolaris and Solaris Race condition in the Doors subsystem in the kernel in Sun Solaris 8 through 10, and OpenSolaris before snv_94, allows local users to cause a denial of service (process hang), or possibly bypass file permissions or gain kernel-context privileges, via vectors involving the time at which control is transferred from a caller to a door server. | 6.9 |
| 2009-03-12 | CVE-2009-0874 | Resource Management Errors vulnerability in SUN Opensolaris and Solaris Multiple unspecified vulnerabilities in the Doors subsystem in the kernel in Sun Solaris 8 through 10, and OpenSolaris before snv_94, allow local users to cause a denial of service (process hang), or possibly bypass file permissions or gain kernel-context privileges, via vectors including ones related to (1) an argument handling deadlock in a door server and (2) watchpoint problems in the door_call function. | 4.9 |
| 2009-03-11 | CVE-2009-0872 | Permissions, Privileges, and Access Controls vulnerability in SUN Opensolaris and Solaris The NFS server in Sun Solaris 10, and OpenSolaris before snv_111, does not properly implement the AUTH_NONE (aka sec=none) security mode in combination with other security modes, which allows remote attackers to bypass intended access restrictions and read or modify files, as demonstrated by a combination of the AUTH_NONE and AUTH_SYS security modes. | 6.8 |
| 2009-03-09 | CVE-2009-0857 | Cross-Site Scripting vulnerability in SUN Management Center 3.6.1/4.0 Cross-site scripting (XSS) vulnerability in /prm/reports in the Performance Reporting Module (PRM) for Sun Management Center (SunMC) 3.6.1 and 4.0 allows remote attackers to inject arbitrary web script or HTML via the msg parameter. | 4.3 |
| 2009-02-09 | CVE-2009-0480 | Numeric Errors vulnerability in SUN Opensolaris and Solaris The IP implementation in Sun Solaris 8 through 10, and OpenSolaris before snv_82, uses an improper arena when allocating minor numbers for sockets, which allows local users to cause a denial of service (32-bit application failure and login outage) by opening a large number of sockets. | 4.9 |
| 2009-02-02 | CVE-2008-6024 | Resource Management Errors vulnerability in SUN Opensolaris and Solaris Unspecified vulnerability in the NFSv4 client module in the kernel on Sun Solaris 10 and OpenSolaris before snv_37, when automountd is used, allows user-assisted remote attackers to cause a denial of service (unresponsive NFS filesystems) via unknown vectors. | 5.4 |
| 2009-01-29 | CVE-2009-0346 | Cryptographic Issues vulnerability in SUN Opensolaris and Solaris The IP-in-IP packet processing implementation in the IPsec and IP stacks in the kernel in Sun Solaris 9 and 10, and OpenSolaris snv_01 though snv_85, allows local users to cause a denial of service (panic) via a self-encapsulated packet that lacks IPsec protection. | 4.9 |
| 2009-01-28 | CVE-2009-0319 | Local Code Execution vulnerability in SUN Opensolaris and Solaris Unspecified vulnerability in the autofs module in the kernel in Sun Solaris 8 through 10, and OpenSolaris before snv_108, allows local users to cause a denial of service (autofs mount outage) or possibly gain privileges via vectors related to "xdr processing problems." local sun | 6.9 |