Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sun solaris 10 vulnerabilities and exploits
(subscribe to this query)
7.2
CVSSv2
CVE-2005-2072
The runtime linker (ld.so) in Solaris 8, 9, and 10 trusts the LD_AUDIT environment variable in setuid or setgid programs, which allows local users to gain privileges by (1) modifying LD_AUDIT to reference malicious code and possibly (2) using a long value for LD_AUDIT.
Sun Sunos 5.8
Sun Solaris 8.0
Sun Solaris 9.0
Sun Solaris 10.0
2 EDB exploits
4.9
CVSSv2
CVE-2008-1317
Unspecified vulnerability in the Inter-Process Communication (IPC) message queue subsystem in Sun Solaris 10 allows local users to cause a denial of service (reboot) via blocked I/O message queues.
Sun Solaris 10
6.3
CVSSv2
CVE-2008-1356
Unspecified vulnerability in xscreensaver in Sun Solaris 10 Java Desktop System (JDS), when using the GNOME On-Screen Keyboard (GOK), allows local users to bypass authentication via unknown vectors that cause the screen saver to crash.
Sun Solaris 10
4.9
CVSSv2
CVE-2007-6225
Unspecified vulnerability in Sun Solaris 10, when 64bit mode is used on the x86 platform, allows local users in a Linux (lx) branded zone to cause a denial of service (panic) via unspecified vectors.
Sun Solaris 10
9.3
CVSSv2
CVE-2007-6413
Sun Solaris 10 with the 120011-04 and 120012-04 patches, and later 120011-* and 120012-* patches, allows remote malicious users to bypass certain netgroup restrictions and obtain root access to a filesystem via NFS requests from a client root user.
Sun Solaris 10
4.9
CVSSv2
CVE-2008-2706
Unspecified vulnerability in the event port implementation in Sun Solaris 10 allows local users to cause a denial of service (panic) by submitting and retrieving user-defined events, probably related to a NULL dereference.
Sun Solaris 10
4.7
CVSSv2
CVE-2008-1684
inetd on Sun Solaris 10, when debug logging is enabled, allows local users to write to arbitrary files via a symlink attack on the /var/tmp/inetd.log temporary file.
Sun Solaris 10
7.8
CVSSv2
CVE-2008-2089
Unspecified vulnerability in the SCTP protocol implementation in Sun Solaris 10 allows remote malicious users to cause a denial of service (panic) via a crafted SCTP packet.
Sun Solaris 10
7.8
CVSSv2
CVE-2008-2090
Unspecified vulnerability in the SCTP protocol implementation in Sun Solaris 10 allows remote malicious users to cause a denial of service (CPU consumption and network traffic amplification) via a crafted SCTP packet.
Sun Solaris 10
4.9
CVSSv2
CVE-2008-1205
Unspecified vulnerability in the ipsecah kernel module in Sun Solaris 10, when a key management daemon for IPsec security associations is running, allows local users to cause a denial of service (panic) via unspecified vectors.
Sun Solaris 10
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4761
command injection
CVE-2024-3676
IDOR
CVE-2024-30039
CVE-2024-32113
CVE-2024-30049
CVE-2024-4776
SQL injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »