Vulnerabilities > SUN > Sunos > 5.10
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2008-05-09 | CVE-2008-2121 | Configuration vulnerability in SUN Sunos 5.10/5.8/5.9 The TCP implementation in Sun Solaris 8, 9, and 10 allows remote attackers to cause a denial of service (CPU consumption and new connection timeouts) via a TCP SYN flood attack. | 7.8 |
| 2008-04-14 | CVE-2008-1778 | Configuration vulnerability in SUN Sunos 5.10/5.9 Unspecified vulnerability in the floating point context switch implementation in Sun Solaris 9 and 10 on x86 platforms might allow local users to cause a denial of service (application exit), corrupt data, or trigger incorrect calculations via unknown vectors. | 6.6 |
| 2008-03-24 | CVE-2008-1480 | Remote Denial of Service vulnerability in Sun Solaris 'rpc.metad' rpc.metad in Sun Solaris 10 allows remote attackers to cause a denial of service (daemon crash) via a malformed RPC request. network sun | 4.3 |
| 2008-03-18 | CVE-2008-1369 | Permissions, Privileges, and Access Controls vulnerability in SUN Sunos 5.10 A certain incorrect Sun Solaris 10 image on SPARC Enterprise T5120 and T5220 servers has /etc/default/login and /etc/ssh/sshd_config files that configure root logins in a manner unintended by the vendor, which allows remote attackers to gain privileges via unspecified vectors. | 10.0 |
| 2008-02-29 | CVE-2008-1095 | Permissions, Privileges, and Access Controls vulnerability in SUN Solaris and Sunos Unspecified vulnerability in the Internet Protocol (IP) implementation in Sun Solaris 8, 9, and 10 allows remote attackers to bypass intended firewall policies or cause a denial of service (panic) via unknown vectors, possibly related to ICMP packets and IP fragment reassembly. | 6.8 |
| 2008-01-15 | CVE-2008-0269 | Local Denial of Service vulnerability in SUN Sunos 5.10 Unspecified vulnerability in the dotoprocs function in Sun Solaris 10 allows local users to cause a denial of service (panic) via unspecified vectors. | 4.9 |
| 2007-12-20 | CVE-2007-6482 | Multiple vulnerability in Sun Ray Device Manager Daemon Unspecified vulnerability in the Device Manager daemon (utdevmgrd) in Sun Ray Server Software 2.0, 3.0, 3.1, and 3.1.1 allows remote attackers to cause a denial of service (daemon crash) via unspecified vectors. | 7.8 |
| 2007-12-20 | CVE-2007-6480 | Unspecified vulnerability in SUN Management+Center 3.5Update1/3.6/3.6.1 The Oracle database component in Sun Management Center (Sun MC) 3.6.1, 3.6, and 3.5 Update 1 has a default account, which allows remote attackers to obtain database access and execute arbitrary code. | 9.4 |
| 2007-12-04 | CVE-2007-6216 | Race Condition vulnerability in SUN Solaris and Sunos Race condition in the Fibre Channel protocol (fcp) driver and Devices filesystem (devfs) in Sun Solaris 10 allows local users to cause a denial of service (system hang) via some programs that access hardware resources, as demonstrated by the (1) cfgadm and (2) format programs. | 4.7 |
| 2007-11-14 | CVE-2007-3880 | USE of Externally-Controlled Format String vulnerability in SUN NET Connect Software 3.2.3/3.2.4 Format string vulnerability in srsexec in Sun Remote Services (SRS) Net Connect 3.2.3 and 3.2.4, as distributed in the SRS Proxy Core (SUNWsrspx) package, allows local users to gain privileges via format string specifiers in unspecified input that is logged through syslog. | 7.2 |