Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sun solaris 10.0 vulnerabilities and exploits
(subscribe to this query)
4.6
CVSSv2
CVE-2006-4655
Buffer overflow in the Strcmp function in the XKEYBOARD extension in X Window System X11R6.4 and previous versions, as used in SCO UnixWare 7.1.3 and Sun Solaris 8 through 10, allows local users to gain privileges via a long _XKB_CHARSET environment variable value.
Sun Solaris 9.0
Sco Unixware 7.1.3
Sun Solaris 10.0
Sun Solaris 8.0
4 EDB exploits
3.6
CVSSv2
CVE-2006-4439
pkgadd in Sun Solaris 10 prior to 20060825 installs files with insecure file and directory permissions (755 or 777) if the pkgmap file contains a "?" (question mark) in the mode field, which allows local users to modify arbitrary files or directories, a different vulner...
Sun Solaris 10.0
7.2
CVSSv2
CVE-2006-4319
Buffer overflow in the format command in Solaris 8, 9, and 10 allows local users with access to format (such as the "File System Management" RBAC profile) to execute arbitrary code via unknown vectors, a different vulnerability than CVE-2006-4307.
Sun Solaris 10.0
Sun Sunos 5.8
Sun Solaris 8.0
Sun Solaris 9.0
Sun Sunos 5.9
Sun Sunos 5.10
2.6
CVSSv2
CVE-2006-4303
Race condition in (1) libnsl and (2) TLI/XTI API routines in Sun Solaris 10 allows remote malicious users to cause a denial of service ("tight loop" and CPU consumption for listener applications) via unknown vectors related to TCP fusion (do_tcp_fusion).
Sun Solaris 10.0
5.4
CVSSv2
CVE-2006-4139
Race condition in Sun Solaris 10 allows malicious users to cause a denial of service (system panic) via unspecified vectors related to ifconfig and either netstat or SNMP queries.
Sun Solaris 10.0
5.4
CVSSv2
CVE-2006-4117
The squeue_drain function in Sun Solaris 10, possibly only when run on CMT processors, allows remote malicious users to cause a denial of service ("bad trap" and system panic) by opening and closing a large number of TCP connections ("heavy TCP/IP loads"). NOT...
Sun Solaris 10.0
5
CVSSv2
CVE-2006-3968
The crypto provider in Sun Solaris 10 3/05 HW2 without patch 121236-01, when running on Sun Fire T2000 platforms, incorrectly verifies a DSA signature, which might prevent applications from detecting that the data has been modified.
Sun Solaris 10.0
5
CVSSv2
CVE-2006-3920
The TCP implementation in Sun Solaris 8, 9, and 10 prior to 20060726 allows remote malicious users to cause a denial of service (resource exhaustion) via a TCP packet with an incorrect sequence number, which triggers an ACK storm.
Sun Solaris 9.0
Sun Solaris 10.0
Sun Sunos 5.8
4.9
CVSSv2
CVE-2006-3824
systeminfo.c for Sun Solaris allows local users to read kernel memory via a 0 variable count argument to the sysinfo system call, which causes a -1 argument to be used by the copyout function. NOTE: this issue has been referred to as an integer overflow, but it is probably more l...
Sun Solaris 10.0
2 EDB exploits
2.1
CVSSv2
CVE-2006-3825
The IPv4 implementation in Sun Solaris 10 prior to 20060721 allows local users to select routes that differ from the routing table, possibly facilitating firewall bypass or unauthorized network communication.
Sun Solaris 10.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »