Unspecified vulnerability in Oracle Sun Solaris 10 and 11 allows local users to affect confidentiality via vectors related to RPC Utility.
Max CVSS
1.9
EPSS Score
0.04%
Published
2015-01-21
Updated
2017-09-08
Unspecified vulnerability in Oracle Sun Solaris 11 allows local users to affect availability via unknown vectors related to Network Configuration.
Max CVSS
1.7
EPSS Score
0.04%
Published
2013-04-17
Updated
2013-10-11
Unspecified vulnerability in Oracle Sun Solaris 8, 9, 10, and 11 allows local users to affect availability via unknown vectors related to Utility.
Max CVSS
1.9
EPSS Score
0.04%
Published
2013-04-17
Updated
2017-09-19
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 7 and earlier, 6 Update 35 and earlier, 5.0 Update 36 and earlier, and 1.4.2_38 and earlier allows remote authenticated users to have an unspecified impact via unknown vectors related to Networking. NOTE: the Oracle CPU states that this issue has a 0.0 CVSS score. If so, then this is not a vulnerability and this issue should not be included in CVE.
Max CVSS
N/A
EPSS Score
0.28%
Published
2012-10-16
Updated
2022-05-13
Unspecified vulnerability in Oracle Sun Solaris 10 and 11, when running on SPARC, allows local users to affect confidentiality via unknown vectors related to Kernel.
Max CVSS
1.7
EPSS Score
0.04%
Published
2012-10-17
Updated
2013-10-11
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 6 and earlier, and 6 Update 34 and earlier, has no impact and remote attack vectors involving AWT and "a security-in-depth issue that is not directly exploitable but which can be used to aggravate security vulnerabilities that can be directly exploited." NOTE: this identifier was assigned by the Oracle CNA, but CVE is not intended to cover defense-in-depth issues that are only exposed by the presence of other vulnerabilities. NOTE: Oracle has not commented on claims from a downstream vendor that this issue is related to "toolkit internals references."
Max CVSS
N/A
EPSS Score
1.39%
Published
2012-08-30
Updated
2022-05-13
Unspecified vulnerability in Oracle Solaris 8, 9, 10, and 11 Express allows local users to affect availability via unknown vectors related to Kernel, a different vulnerability than CVE-2011-0813.
Max CVSS
1.9
EPSS Score
0.04%
Published
2012-01-18
Updated
2018-01-06
Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7, 6 Update 27 and earlier, and JavaFX 2.0 allows remote attackers to affect confidentiality via unknown vectors related to Deployment.
Max CVSS
1.8
EPSS Score
0.30%
Published
2011-10-19
Updated
2022-05-13
Unspecified vulnerability in Oracle Solaris 10 allows local users to affect confidentiality via unknown vectors related to Trusted Extensions.
Max CVSS
1.7
EPSS Score
0.04%
Published
2011-07-21
Updated
2011-10-05
Unspecified vulnerability in Oracle Solaris 9 and 10 allows local users to affect confidentiality via unknown vectors related to wbem.
Max CVSS
1.7
EPSS Score
0.04%
Published
2011-04-20
Updated
2011-04-20
Unspecified vulnerability in Oracle Sun Java System Portal Server 7.1 and 7.2 allows local users to affect confidentiality via unknown vectors related to Proxy.
Max CVSS
1.0
EPSS Score
0.04%
Published
2011-01-19
Updated
2017-08-17
XScreenSaver in Sun Solaris 10, when the accessibility feature is enabled, allows physically proximate attackers to obtain sensitive information by reading popup windows, which are displayed even when the screen is locked, a different vulnerability than CVE-2009-1276 and CVE-2009-2711.
Max CVSS
1.9
EPSS Score
0.05%
Published
2009-10-22
Updated
2017-09-19
Unspecified vulnerability in xscreensaver in Sun Solaris 10, and OpenSolaris before snv_112, when Xorg or Xnewt is used and RandR is enabled, allows physically proximate attackers to read a locked screen via unknown vectors related to XRandR resize events.
Max CVSS
1.9
EPSS Score
0.07%
Published
2009-09-28
Updated
2017-08-17
Unspecified vulnerability in the utaudiod daemon in Sun Ray Server Software (SRSS) 4.0, when Solaris Trusted Extensions is enabled, allows local users to cause a denial of service (audio outage) or possibly gain privileges via unknown vectors related to "resource leaks."
Max CVSS
1.9
EPSS Score
0.04%
Published
2009-07-16
Updated
2017-08-17
Unspecified vulnerability in idmap in Sun OpenSolaris snv_88 through snv_110, when a CIFS server is enabled, allows local users to cause a denial of service (idpmapd daemon crash and idmapd outage) via unknown vectors.
Max CVSS
1.9
EPSS Score
0.04%
Published
2009-06-09
Updated
2009-06-19
Unspecified vulnerability in the dynamic tracing framework (DTrace) on Sun Solaris 10 before 20070730 allows local users with PRIV_DTRACE_USER privileges to cause a denial of service (panic or hang) via unspecified use of certain DTrace programs.
Max CVSS
1.5
EPSS Score
0.04%
Published
2007-08-01
Updated
2017-09-29
Sun Java System Access Manager (formerly Java System Identity Server) before 20070710, when the message debug level is configured in the com.iplanet.services.debug.level property in AMConfig.properties, logs cleartext login passwords, which allows local users to gain privileges by reading /var/opt/SUNWam/debug/amAuth.
Max CVSS
1.7
EPSS Score
0.04%
Published
2007-07-11
Updated
2017-07-29
Race condition in the Xsession script, as used by X Display Manager (xdm) in NetBSD before 20060212, X.Org before 20060225, and Solaris 8 through 10 before 20061006, causes a user's Xsession errors file to have weak permissions before a chmod is performed, which allows local users to read Xsession errors files of other users.
Max CVSS
1.2
EPSS Score
0.07%
Published
2006-10-10
Updated
2018-10-30
Unspecified vulnerability in SunPlex Manager in Sun Cluster 3.1 4/04 allows local users with solaris.cluster.gui authorization to view arbitrary files via unspecified vectors.
Max CVSS
1.7
EPSS Score
0.04%
Published
2006-04-04
Updated
2017-07-20
Race condition in Java 1.4.2 before 1.4.2 Release 2 on Apple Mac OS X allows local users to corrupt files or create arbitrary files via unspecified attack vectors related to a temporary directory, possibly due to a symlink attack.
Max CVSS
1.2
EPSS Score
0.04%
Published
2005-12-31
Updated
2017-07-11
Sun Cluster 2.2, when HA-Oracle or HA-Sybase DBMS services are used, stores database credentials in cleartext in a cluster configuration file, which allows local users to obtain sensitive information by reading this file.
Max CVSS
1.9
EPSS Score
0.04%
Published
2010-02-08
Updated
2017-08-17
A race condition in the at command for Solaris 2.6 through 9 allows local users to delete arbitrary files via the -r argument with .. (dot dot) sequences in the job name, then modifying the directory structure after at checks permissions to delete the file and before the deletion actually takes place.
Max CVSS
1.2
EPSS Score
0.04%
Published
2003-12-31
Updated
2018-10-30
Race condition in Solaris 2.6 through 9 allows local users to cause a denial of service (kernel panic), as demonstrated via the namefs function, pipe, and certain STREAMS routines.
Max CVSS
1.2
EPSS Score
0.04%
Published
2003-10-14
Updated
2018-10-30
Unknown vulnerability in Solaris 2.6 through 9 causes a denial of service (system panic) via "a rare race condition" or an attack by local users.
Max CVSS
1.2
EPSS Score
0.04%
Published
2003-08-27
Updated
2018-10-30
catman in Solaris 2.7 and 2.8 allows local users to overwrite arbitrary files via a symlink attack on the sman_PID temporary file.
Max CVSS
1.2
EPSS Score
0.04%
Published
2001-02-12
Updated
2018-10-30
28 vulnerabilities found
1 2
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!