CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register   Reset Password   Activate Account
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

SUN » Sunos : Security Vulnerabilities (CVSS score between 7 and 7.99)

Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
1 CVE-2013-3753 2013-07-17 2013-08-22
7.8
None Remote Low Not required None None Complete
Unspecified vulnerability in Oracle Solaris 11 allows remote attackers to affect availability via vectors related to Kernel/STREAMS framework.
2 CVE-2013-3750 2013-07-17 2013-07-17
7.2
None Local Low Not required Complete Complete Complete
Unspecified vulnerability in Oracle Solaris 11 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Kernel/VM
3 CVE-2013-3748 2013-07-17 2013-08-22
7.8
None Remote Low Not required None None Complete
Unspecified vulnerability in Oracle Solaris 11 allows remote attackers to affect availability via vectors related to Driver/IDM (iSCSI Data Mover).
4 CVE-2012-3210 2012-10-16 2013-10-10
7.8
None Remote Low Not required None None Complete
Unspecified vulnerability in Oracle Sun Solaris 11 allows remote attackers to affect availability via unknown vectors related to Kernel.
5 CVE-2012-3204 2012-10-16 2013-10-10
7.2
None Local Low Not required Complete Complete Complete
Unspecified vulnerability in Oracle Sun Solaris 11 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Power Management.
6 CVE-2012-3199 2012-10-16 2013-10-10
7.2
None Local Low Not required Complete Complete Complete
Unspecified vulnerability in Oracle Sun Solaris 10 and 11 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Gnome Trusted Extension.
7 CVE-2012-3189 2012-10-16 2013-10-10
7.8
None Remote Low Not required None None Complete
Unspecified vulnerability in Oracle Sun Solaris 11 allows remote attackers to affect availability, related to COMSTAR.
8 CVE-2012-3125 2012-07-17 2013-10-10
7.1
None Remote Medium Not required None None Complete
Unspecified vulnerability in Oracle Sun Solaris 8, 9, and 10 allows remote attackers to affect availability, related to TCP/IP.
9 CVE-2012-3120 2012-07-17 2013-10-10
7.8
None Remote Low Not required None None Complete
Unspecified vulnerability in Oracle Sun Solaris 8 allows remote attackers to affect availability, related to TCP/IP.
10 CVE-2012-0217 119 Overflow +Priv 2012-06-12 2013-10-10
7.2
None Local Low Not required Complete Complete Complete
The x86-64 kernel system-call functionality in Xen 4.1.2 and earlier, as used in Citrix XenServer 6.0.2 and earlier and other products; Oracle Solaris 11 and earlier; illumos before r13724; Joyent SmartOS before 20120614T184600Z; FreeBSD before 9.0-RELEASE-p3; NetBSD 6.0 Beta and earlier; Microsoft Windows Server 2008 R2 and R2 SP1 and Windows 7 Gold and SP1; and possibly other operating systems, when running on an Intel processor, incorrectly uses the sysret path in cases where a certain address is not a canonical address, which allows local users to gain privileges via a crafted application. NOTE: because this issue is due to incorrect use of the Intel specification, it should have been split into separate identifiers; however, there was some value in preserving the original mapping of the multi-codebase coordinated-disclosure effort to a single identifier.
11 CVE-2012-0094 2012-01-18 2012-01-30
7.8
None Remote Low Not required None None Complete
Unspecified vulnerability in Oracle Solaris 9, 10, and 11 Express allows remote attackers to affect availability, related to TCP/IP.
12 CVE-2011-3543 2011-10-18 2011-10-29
7.8
None Remote Low Not required None None Complete
Unspecified vulnerability in Oracle Solaris 11 Express allows remote attackers to affect availability, related to iSCSI DataMover (IDM).
13 CVE-2011-2287 2011-07-20 2011-10-04
7.8
None Remote Low Not required None None Complete
Unspecified vulnerability in Oracle Solaris 8, 9, 10, and 11 Express allows remote attackers to affect availability via unknown vectors related to fingerd.
14 CVE-2011-2285 2011-07-20 2011-10-04
7.2
None Local Low Not required Complete Complete Complete
Unspecified vulnerability in Oracle Solaris 10 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Installer.
15 CVE-2011-0841 2011-04-20 2012-08-02
7.8
None Remote Low Not required None None Complete
Unspecified vulnerability in Oracle Solaris 11 Express allows remote attackers to affect availability, related to TCP/IP.
16 CVE-2010-4457 2011-01-19 2011-01-26
7.8
None Remote Low Not required None None Complete
Unspecified vulnerability in Oracle Solaris 11 Express allows remote attackers to affect availability, related to SMB and CIFS.
17 CVE-2010-2632 DoS 2011-01-19 2011-05-25
7.8
None Remote Low Not required None None Complete
Unspecified vulnerability in the FTP Server in Oracle Solaris 8, 9, 10, and 11 Express allows remote attackers to affect availability. NOTE: the previous information was obtained from the January 2011 CPU. Oracle has not commented on claims from a reliable researcher that this is an issue in the glob implementation in libc that allows remote authenticated users to cause a denial of service (CPU and memory consumption) via crafted glob expressions that do not match any pathnames.
18 CVE-2001-1328 Exec Code Overflow 2001-06-22 2008-09-05
7.5
User Remote Low Not required Partial Partial Partial
Buffer overflow in ypbind daemon in Solaris 5.4 through 8 allows remote attackers to execute arbitrary code.
19 CVE-2001-1076 Exec Code Overflow 2001-07-05 2008-09-10
7.2
Admin Local Low Not required Complete Complete Complete
Buffer overflow in whodo in Solaris SunOS 5.5.1 through 5.8 allows local users to execute arbitrary code via a long (1) SOR or (2) CFIME environment variable.
20 CVE-2000-0471 Overflow +Priv 2000-06-14 2008-09-05
7.2
Admin Local Low Not required Complete Complete Complete
Buffer overflow in ufsrestore in Solaris 8 and earlier allows local users to gain root privileges via a long pathname.
21 CVE-1999-1586 +Priv 1999-12-31 2008-09-05
7.2
Admin Local Low Not required Complete Complete Complete
loadmodule in SunOS 4.1.x, as used by xnews, does not properly sanitize its environment, which allows local users to gain privileges, a different vulnerability than CVE-1999-1584.
22 CVE-1999-1580 +Priv 1995-08-23 2008-09-05
7.2
Admin Local Low Not required Complete Complete Complete
SunOS sendmail 5.59 through 5.65 uses popen to process a forwarding host argument, which allows local users to gain root privileges by modifying the IFS (Internal Field Separator) variable and passing crafted values to the -oR option.
23 CVE-1999-1507 1993-02-03 2008-09-05
7.2
Admin Local Low Not required Complete Complete Complete
Sun SunOS 4.1 through 4.1.3 allows local attackers to gain root access via insecure permissions on files and directories such as crash.
24 CVE-1999-1506 1990-01-29 2008-09-05
7.5
None Remote Low Not required Partial Partial Partial
Vulnerability in SMI Sendmail 4.0 and earlier, on SunOS up to 4.0.3, allows remote attackers to access user bin.
25 CVE-1999-1438 +Priv 1991-02-22 2008-09-05
7.2
Admin Local Low Not required Complete Complete Complete
Vulnerability in /bin/mail in SunOS 4.1.1 and earlier allows local users to gain root privileges via certain command line arguments.
26 CVE-1999-1396 DoS 1992-07-21 2008-09-05
7.2
Admin Local Low Not required Complete Complete Complete
Vulnerability in integer multiplication emulation code on SPARC architectures for SunOS 4.1 through 4.1.2 allows local users to gain root access or cause a denial of service (crash).
27 CVE-1999-1318 +Priv 1993-09-17 2008-09-10
7.2
Admin Local Low Not required Complete Complete Complete
/usr/5bin/su in SunOS 4.1.3 and earlier uses a search path that includes the current working directory (.), which allows local users to gain privileges via Trojan horse programs.
28 CVE-1999-1212 +Priv 1991-03-27 2008-09-05
7.2
Admin Local Low Not required Complete Complete Complete
Vulnerability in in.rlogind in SunOS 4.0.3 and 4.0.3c allows local users to gain root privileges.
29 CVE-1999-1211 +Priv 1991-03-27 2008-09-05
7.2
Admin Local Low Not required Complete Complete Complete
Vulnerability in in.telnetd in SunOS 4.1.1 and earlier allows local users to gain root privileges.
30 CVE-1999-1197 +Priv 1990-12-20 2008-09-05
7.2
Admin Local Low Not required Complete Complete Complete
TIOCCONS in SunOS 4.1.1 does not properly check the permissions of a user who tries to redirect console output and input, which could allow a local user to gain privileges.
31 CVE-1999-1142 +Priv 1992-05-27 2008-09-05
7.2
Admin Local Low Not required Complete Complete Complete
SunOS 4.1.2 and earlier allows local users to gain privileges via "LD_*" environmental variables to certain dynamically linked setuid or setgid programs such as (1) login, (2) su, or (3) sendmail, that change the real and effective user ids to the same user.
32 CVE-1999-1123 +Priv 1991-05-20 2008-09-05
7.2
Admin Local Low Not required Complete Complete Complete
The installation of Sun Source (sunsrc) tapes allows local users to gain root privileges via setuid root programs (1) makeinstall or (2) winstall.
33 CVE-1999-1080 +Priv 1995-05-10 2008-09-05
7.2
Admin Local Low Not required Complete Complete Complete
rmmount in SunOS 5.7 may mount file systems without the nosuid flag set, contrary to the documentation and its use in previous versions of SunOS, which could allow local users with physical access to gain root privileges by mounting a floppy or CD-ROM that contains a setuid program and running volcheck, when the file systems do not have the nosuid option specified in rmmount.conf.
34 CVE-1999-1021 1992-12-30 2008-09-05
7.2
Admin Local Low Not required Complete Complete Complete
NFS on SunOS 4.1 through 4.1.2 ignores the high order 16 bits in a 32 bit UID, which allows a local user to gain root access if the lower 16 bits are set to 0, as fixed by the NFS jumbo patch upgrade.
35 CVE-1999-0795 +Info 1998-03-01 2008-09-09
7.5
User Remote Low Not required Partial Partial Partial
The NIS+ rpc.nisd server allows remote attackers to execute certain RPC calls without authentication to obtain system information, disable logging, or modify caches.
36 CVE-1999-0687 Exec Code 1999-09-13 2008-09-09
7.5
User Remote Low Not required Partial Partial Partial
The ToolTalk ttsession daemon uses weak RPC authentication, which allows a remote attacker to execute commands.
37 CVE-1999-0298 1997-02-05 2008-09-09
7.5
User Remote Low Not required Partial Partial Partial
ypbind with -ypset and -ypsetme options activated in Linux Slackware and SunOS allows local and remote attackers to overwrite files via a .. (dot dot) attack.
38 CVE-1999-0212 1998-04-29 2008-09-09
7.8
None Remote Low Not required Complete None None
Solaris rpc.mountd generates error messages that allow a remote attacker to determine what files are on the server.
39 CVE-1999-0185 Exec Code 1997-10-01 2008-09-09
7.5
User Remote Low Not required Partial Partial Partial
In SunOS or Solaris, a remote user could connect from an FTP server's data port to an rlogin server on a host that trusts the FTP server, allowing remote command execution.
40 CVE-1999-0168 Bypass 1992-06-04 2008-09-09
7.5
User Remote Low Not required Partial Partial Partial
The portmapper may act as a proxy and redirect service requests from an attacker, making the request appear to come from the local host, possibly bypassing authentication that would otherwise have taken place. For example, NFS file systems could be mounted through the portmapper despite export restrictions.
41 CVE-1999-0136 1996-07-31 2008-09-09
7.2
Admin Local Low Not required Complete Complete Complete
Kodak Color Management System (KCMS) on Solaris allows a local user to write to arbitrary files and gain root access.
42 CVE-1999-0134 1996-08-06 2008-09-09
7.2
Admin Local Low Not required Complete Complete Complete
vold in Solaris 2.x allows local users to gain root access.
43 CVE-1999-0120 1994-03-21 2008-09-09
7.2
Admin Local Low Not required Complete Complete Complete
Sun/Solaris utmp file allows local users to gain root access if it is writable by users other than root.
44 CVE-1999-0057 Exec Code 1998-11-16 2008-09-09
7.5
User Remote Low Not required Partial Partial Partial
Vacation program allows command execution by remote users through a sendmail command.
45 CVE-1999-0056 Overflow 1998-09-09 2008-09-09
7.2
Admin Local Low Not required Complete Complete Complete
Buffer overflow in Sun's ping program can give root access to local users.
46 CVE-1999-0051 1997-01-06 2008-09-09
7.2
Admin Local Low Not required Complete Complete Complete
Arbitrary file creation and program execution using FLEXlm LicenseManager, from versions 4.0 to 5.0, in IRIX.
47 CVE-1999-0040 Exec Code Overflow 1997-05-01 2008-09-09
7.2
Admin Local Low Not required Complete Complete Complete
Buffer overflow in Xt library of X Windowing System allows local users to execute commands with root privileges.
48 CVE-1999-0033 Exec Code Overflow 1997-06-12 2008-09-09
7.2
Admin Local Low Not required Complete Complete Complete
Command execution in Sun systems via buffer overflow in the at program.
49 CVE-1999-0032 Exec Code Overflow 1996-10-25 2008-09-09
7.2
Admin Local Low Not required Complete Complete Complete
Buffer overflow in lpr, as used in BSD-based systems including Linux, allows local users to execute arbitrary code as root via a long -C (classification) command line option.
50 CVE-1999-0023 Overflow +Priv 1996-07-24 2008-09-09
7.2
Admin Local Low Not required Complete Complete Complete
Local user gains root privileges via buffer overflow in rdist, via lookup() function.
Total number of vulnerabilities : 51   Page : 1 (This Page)2
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.