Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sun solaris 10.0 vulnerabilities and exploits
(subscribe to this query)
3.6
CVSSv2
CVE-2006-4842
The Netscape Portable Runtime (NSPR) API 4.6.1 and 4.6.2, as used in Sun Solaris 10, trusts user-specified environment variables for specifying log files even when running from setuid programs, which allows local users to create or overwrite arbitrary files.
Netscape Portable Runtime Api 4.6.2
Netscape Portable Runtime Api 4.6.1
Sun Solaris 10.0
6 EDB exploits
4
CVSSv2
CVE-2006-5201
Multiple packages on Sun Solaris, including (1) NSS; (2) Java JDK and JRE 5.0 Update 8 and previous versions, SDK and JRE 1.4.x up to 1.4.2_12, and SDK and JRE 1.3.x up to 1.3.1_19; (3) JSSE 1.0.3_03 and previous versions; (4) IPSec/IKE; (5) Secure Global Desktop; and (6) StarOff...
Sun Secure Global Desktop
Sun Staroffice
Sun Nss
Sun Solaris 9.0
Sun Solaris 10.0
Sun Sunos 5.8
Sun Jdk 1.5.0
Sun Jre 1.4.2
Sun Jre 1.4.2 1
Sun Jre 1.4.2 2
Sun Jre 1.4.2 3
Sun Jre 1.5.0
Sun Jre 1.4.2 4
Sun Jre 1.4.2 6
Sun Jre 1.3.1
Sun Jre 1.3.1 03
Sun Jre 1.3.1 10
Sun Jre 1.3.1 12
Sun Jre 1.3.1 17
Sun Jre 1.3.1 19
Sun Jre 1.3.1 05
Sun Jre 1.3.1 06
3.6
CVSSv2
CVE-2006-5213
Sun Solaris 10 prior to 20061006 uses "incorrect and insufficient permission checks" that allow local users to intercept or spoof packets by creating a raw socket on a link aggregation (network device aggregation).
Sun Solaris 10.0
1.2
CVSSv2
CVE-2006-5214
Race condition in the Xsession script, as used by X Display Manager (xdm) in NetBSD prior to 20060212, X.Org prior to 20060225, and Solaris 8 through 10 prior to 20061006, causes a user's Xsession errors file to have weak permissions before a chmod is performed, which allows...
Netbsd Netbsd 3.99.15
Sun Solaris 10.0
Sun Sunos 5.8
Sun Solaris 9.0
Netbsd Netbsd 3.0
2.6
CVSSv2
CVE-2006-5215
The Xsession script, as used by X Display Manager (xdm) in NetBSD prior to 20060212, X.Org prior to 20060317, and Solaris 8 through 10 prior to 20061006, allows local users to overwrite arbitrary files, or read another user's Xsession errors file, via a symlink attack on a /...
X.org Xdm
Netbsd Netbsd 1.1
Netbsd Netbsd 1.2
Netbsd Netbsd 1.4.1
Netbsd Netbsd 1.4.2
Netbsd Netbsd 1.5.1
Netbsd Netbsd 1.5.2
Netbsd Netbsd 2.0
Netbsd Netbsd 2.0.1
Sun Solaris 10.0
Sun Sunos 5.8
Sun Solaris 9.0
Netbsd Netbsd 1.3.1
Netbsd Netbsd 1.3.2
Netbsd Netbsd 1.2.1
Netbsd Netbsd 1.3
Netbsd Netbsd 1.4.3
Netbsd Netbsd 1.4
Netbsd Netbsd 1.5.3
Netbsd Netbsd 1.5
Netbsd Netbsd 2.0.2
Netbsd Netbsd 2.0.3
7.8
CVSSv2
CVE-2006-5073
Unspecified vulnerability in Sun Solaris 8, 9 and 10 allows remote malicious users to cause a denial of service (panic) via crafted IPv6 packets, a different vulnerability than CVE-2006-5013.
Sun Solaris 10.0
Sun Sunos 5.8
Sun Solaris 9.0
7.8
CVSSv2
CVE-2006-5075
The Kernel SSL Proxy service (svc:/network/ssl/proxy) in Sun Solaris 10 prior to 20060926 allows remote malicious users to cause a denial of service (system crash) via unspecified vectors related to an SSL client.
Sun Solaris 10.0
7.8
CVSSv2
CVE-2006-5013
Sun Solaris 10 before patch 118855-16 (20060925), when run on x64 systems using IPv6, allows remote malicious users to cause a denial of service (kernel panic) via crafted IPv6 packets.
Sun Solaris 10.0
6.6
CVSSv2
CVE-2006-5012
Unspecified vulnerability in Sun Solaris 8, 9, and 10 prior to 20060925 allows local users to cause a denial of service (disable syslog) and prevent security messages from being logged via unspecified vectors.
Sun Solaris 10.0
Sun Sunos 5.9
Sun Solaris 9.0
Sun Sunos 5.10
Sun Solaris 8.0
Sun Sunos 5.8
4.6
CVSSv2
CVE-2006-4655
Buffer overflow in the Strcmp function in the XKEYBOARD extension in X Window System X11R6.4 and previous versions, as used in SCO UnixWare 7.1.3 and Sun Solaris 8 through 10, allows local users to gain privileges via a long _XKB_CHARSET environment variable value.
Sun Solaris 9.0
Sco Unixware 7.1.3
Sun Solaris 10.0
Sun Solaris 8.0
4 EDB exploits
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »