CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register   Reset Password   Activate Account
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

SUN » Sunos : Security Vulnerabilities (CVSS score between 4 and 4.99)

CVSS Scores Greater Than: 0   1   2   3   4   5   6   7   8   9  
Copy Results Download Results Select Table
Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
1 CVE-2013-1507 2013-04-17 2013-04-17
4.9
 None Local Low Not required None None Complete
Unspecified vulnerability in Oracle Sun Solaris 10 and 11 allows local users to affect availability via unknown vectors related to Filesystem.
2 CVE-2013-1498 2013-04-17 2013-04-17
4.9
 None Local Low Not required None None Complete
Unspecified vulnerability in Oracle Sun Solaris 10 and 11 allows local users to affect availability via unknown vectors related to Kernel/IO, a different vulnerability than CVE-2013-1496.
3 CVE-2013-1496 2013-04-17 2013-04-17
4.9
 None Local Low Not required None None Complete
Unspecified vulnerability in Oracle Sun Solaris 10 and 11 allows local users to affect availability via unknown vectors related to Kernel/IO, a different vulnerability than CVE-2013-1498.
4 CVE-2013-1494 2013-04-17 2013-04-17
4.7
 None Local Medium Not required None None Complete
Unspecified vulnerability in Oracle Sun Solaris 10, when running on SPARC T4 servers, allows local users to affect availability via unknown vectors related to Kernel.
5 CVE-2013-0413 2013-04-17 2013-04-17
4.4
 None Local Medium Not required Partial Partial Partial
Unspecified vulnerability in Oracle Sun Solaris 10 and 11 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Remote Execution Service.
6 CVE-2013-0407 2013-01-16 2013-01-17
4.6
 None Local Low Single system None None Complete
Unspecified vulnerability in Oracle Sun Solaris 10 and 11 allows local users to affect availability via unknown vectors related to Kernel/DTrace Framework.
7 CVE-2013-0406 2013-04-17 2013-04-17
4.3
 None Remote Medium Not required None Partial None
Unspecified vulnerability in Oracle Sun Solaris 10 allows remote attackers to affect integrity via unknown vectors via vectors related to Kernel/IPsec.
8 CVE-2012-5095 2012-10-17 2012-10-17
4.4
 None Local Medium Not required Partial Partial Partial
Unspecified vulnerability in Oracle Sun Solaris 10 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to inetd.
9 CVE-2012-3212 2012-10-16 2013-01-31
4.7
 None Local Medium Not required None None Complete
Unspecified vulnerability in Oracle Sun Solaris 10 and 11, when running on SPARC T4 servers, allows local users to affect availability via unknown vectors related to Kernel.
10 CVE-2012-3211 2012-10-16 2013-01-31
4.6
 None Local Low Single system None None Complete
Unspecified vulnerability in Oracle Sun Solaris 10 and 11 allows local users to affect availability via unknown vectors related to Kernel/System Call.
11 CVE-2012-3208 2012-10-16 2013-01-31
4.9
 None Local Low Not required None None Complete
Unspecified vulnerability in Oracle Sun Solaris 10 and 11 allows local users to affect availability, related to Kernel/RCTL.
12 CVE-2012-3207 2012-10-16 2013-01-31
4.9
 None Local Low Not required None None Complete
Unspecified vulnerability in Oracle Sun Solaris 9, 10, and 11 allows local users to affect availability via unknown vectors related to Kernel.
13 CVE-2012-3131 2012-07-17 2012-12-27
4.3
 None Remote Medium Not required Partial None None
Unspecified vulnerability in Oracle Sun Solaris 9, 10, and 11 allows remote attackers to affect confidentiality, related to Network/NFS.
14 CVE-2012-3130 2012-07-17 2012-12-27
4.3
 None Remote Medium Not required None Partial None
Unspecified vulnerability in Oracle Sun Solaris 11 allows remote attackers to affect integrity via unknown vectors related to pkg.depotd.
15 CVE-2012-3112 2012-07-17 2012-12-27
4.3
 None Remote Medium Not required None Partial None
Unspecified vulnerability in Oracle Sun Solaris 10 allows remote attackers to affect integrity via unknown vectors related to Solaris Management Console.
16 CVE-2012-1765 2012-07-17 2012-09-07
4.7
 None Local Medium Not required None Complete None
Unspecified vulnerability in Oracle Sun Solaris 10 allows local users to affect integrity via unknown vectors related to Branded Zone.
17 CVE-2012-1752 2012-07-17 2012-11-06
4.9
 None Local Low Not required None None Complete
Unspecified vulnerability in Oracle Sun Solaris 11 allows local users to affect availability, related to Kernel/NFS.
18 CVE-2012-1750 2012-07-17 2012-11-06
4.4
 None Local Medium Not required Partial Partial Partial
Unspecified vulnerability in Oracle Sun Solaris 8, 9, 10, and 11 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to mailx.
19 CVE-2012-1692 2012-05-03 2012-12-18
4.9
 None Local Low Not required None None Complete
Unspecified vulnerability in Oracle Sun Solaris 10 allows local users to affect availability, related to SCTP.
20 CVE-2012-1684 2012-05-03 2012-12-18
4.3
 None Local Low Single system Partial Partial Partial
Unspecified vulnerability in Oracle Sun Solaris 8, 9, 10, and 11 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Password Policy.
21 CVE-2012-1681 2012-05-03 2012-12-18
4.9
 None Local Low Not required None None Complete
Unspecified vulnerability in Oracle Sun Solaris 8, 9, 10, and 11 allows local users to affect availability via unknown vectors related to Kernel/sockfs.
22 CVE-2012-0103 2012-01-18 2012-01-30
4.9
 None Local Low Not required None None Complete
Unspecified vulnerability in Oracle Solaris 11 Express allows local users to affect availability via unknown vectors related to Kernel.
23 CVE-2011-3542 2011-10-18 2011-10-29
4.9
 None Local Low Not required None None Complete
Unspecified vulnerability in Oracle Solaris 10 and 11 Express allows local users to affect availability via unknown vectors related to Kernel/Performance Counter BackEnd Module (pcbe).
24 CVE-2011-2313 2011-10-18 2012-05-14
4.3
 None Local Low Multiple systems None None Complete
Unspecified vulnerability in Oracle Solaris 10 allows local users to affect availability, related to ZFS.
25 CVE-2011-2296 2011-07-20 2011-10-04
4.9
 None Local Low Not required None None Complete
Unspecified vulnerability in Oracle Solaris 11 Express allows local users to affect availability, related to Kernel/SCTP.
26 CVE-2011-2295 2011-07-20 2011-10-04
4.7
 None Local Medium Not required None None Complete
Unspecified vulnerability in Oracle Solaris 8, 9, 10, and 11 Express allows local users to affect availability, related to Driver/USB.
27 CVE-2011-2293 2011-07-20 2011-10-04
4.9
 None Local Low Not required None None Complete
Unspecified vulnerability in Oracle Solaris 11 Express allows local users to affect availability via unknown vectors related to Zones.
28 CVE-2011-2290 2011-07-20 2011-10-04
4.9
 None Local Low Not required None None Complete
Unspecified vulnerability in Oracle Solaris 10, and 11 Express allows local users to affect availability via unknown vectors related to Kernel/sockfs.
29 CVE-2011-2259 2011-07-20 2011-10-04
4.9
 None Local Low Not required None None Complete
Unspecified vulnerability in Oracle Solaris 8, 9, 10, and 11 Express allows local users to affect availability, related to UFS.
30 CVE-2011-2258 2011-07-20 2011-10-04
4.6
 None Local Low Not required Partial Partial Partial
Unspecified vulnerability in Oracle Solaris 8, 9, 10, and 11 Express allows local users to affect confidentiality, integrity, and availability via unknown vectors related to rksh.
31 CVE-2011-0829 2011-04-20 2012-08-03
4.9
 None Local Low Not required None None Complete
Unspecified vulnerability in Oracle Solaris 10 and 11 Express allows local users to affect availability, related to Kernel/SPARC.
32 CVE-2011-0813 2011-04-20 2012-08-03
4.9
 None Local Low Not required None None Complete
Unspecified vulnerability in Oracle Solaris 8, 9, 10, and 11 Express allows local users to affect availability via unknown vectors related to Kernel.
33 CVE-2010-4459 2011-01-19 2011-01-26
4.6
 None Local Low Single system None None Complete
Unspecified vulnerability in Oracle Solaris 11 Express allows local users to affect availability via unknown vectors related to SCTP and Kernel/sockfs.
34 CVE-2010-4458 2011-01-19 2011-01-26
4.1
 None Local Medium Multiple systems None None Complete
Unspecified vulnerability in Oracle Solaris 11 Express allows local users to affect availability, related to ZFS.
35 CVE-2010-4446 2011-01-19 2011-01-26
4.6
 None Local Low Single system None None Complete
Unspecified vulnerability in Oracle Solaris 11 Express allows local users to affect availability via unknown vectors related to RDS and Kernel/InfiniBand.
36 CVE-2010-4443 2011-01-19 2011-01-26
4.4
 None Local Medium Single system None None Complete
Unspecified vulnerability in Oracle Solaris 10 and 11 Express allows local users to affect availability, related to Kernel/NFS.
37 CVE-2010-4442 2011-01-19 2011-01-26
4.4
 None Local Medium Single system None None Complete
Unspecified vulnerability in Oracle Solaris 10 and 11 Express allows local users to affect availability via unknown vectors related to the Kernel.
38 CVE-2010-4440 2011-01-19 2011-01-26
4.4
 None Local Medium Single system None None Complete
Unspecified vulnerability in Oracle 10 and 11 Express allows local users to affect availability via unknown vectors related to the Kernel.
39 CVE-2010-4415 2011-01-19 2011-01-26
4.1
 None Local Medium Single system Partial Partial Partial
Unspecified vulnerability in Oracle Solaris 8, 9, and 10 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to libc.
40 CVE-1999-1122 +Priv 1989-07-26 2008-09-05
4.6
 None Local Low Not required Partial Partial Partial
Vulnerability in restore in SunOS 4.0.3 and earlier allows local users to gain privileges.
41 CVE-1999-1025 1998-11-12 2008-09-05
4.6
 User Local Low Not required Partial Partial Partial
CDE screen lock program (screenlock) on Solaris 2.6 does not properly lock an unprivileged user's console session when the host is an NIS+ client, which allows others with physical access to login with any string.
42 CVE-1999-0303 Overflow 1998-05-21 2008-09-09
4.6
 User Local Low Not required Partial Partial Partial
Buffer overflow in BNU UUCP daemon (uucpd) through long hostnames.
43 CVE-1999-0167 1991-12-06 2008-09-09
4.6
 User Local Low Not required Partial Partial Partial
In SunOS, NFS file handles could be guessed, giving unauthorized access to the exported file system.
44 CVE-1999-0129 1996-12-03 2008-09-09
4.6
 User Local Low Not required Partial Partial Partial
Sendmail allows local users to write to a file and gain group permissions via a .forward or :include: file.
Total number of vulnerabilities : 44   Page : 1 (This Page)
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.