This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Detail
Vendor Sun First view 1993-10-01
Product Solaris Last view 2010-07-02
Version Type
Update  
Edition  
Language  
Sofware Edition  
Target Software  
Target Hardware  
Other  

Activity : Overall

COMMON PLATFORM ENUMERATION: Repartition per Version

CPE Name Affected CVE
cpe:2.3:o:sun:solaris:9.0:*:sparc:*:*:*:*:* 131
cpe:2.3:o:sun:solaris:8.0:*:x86:*:*:*:*:* 129
cpe:2.3:o:sun:solaris:7.0:*:x86:*:*:*:*:* 107
cpe:2.3:o:sun:solaris:10.0:*:sparc:*:*:*:*:* 100
cpe:2.3:o:sun:solaris:9.0:*:x86:*:*:*:*:* 90
cpe:2.3:o:sun:solaris:2.5.1:*:x86:*:*:*:*:* 77
cpe:2.3:o:sun:solaris:10:*:x86:*:*:*:*:* 74
cpe:2.3:o:sun:solaris:10:*:sparc:*:*:*:*:* 71
cpe:2.3:o:sun:solaris:10.0:*:x86:*:*:*:*:* 68
cpe:2.3:o:sun:solaris:2.5:*:x86:*:*:*:*:* 59
cpe:2.3:o:sun:solaris:2.4:*:x86:*:*:*:*:* 51
cpe:2.3:o:sun:solaris:9:*:x86:*:*:*:*:* 37
cpe:2.3:o:sun:solaris:9:*:sparc:*:*:*:*:* 35
cpe:2.3:o:sun:solaris:8:*:x86:*:*:*:*:* 31
cpe:2.3:o:sun:solaris:8:*:sparc:*:*:*:*:* 30
cpe:2.3:o:sun:solaris:8.0:*:sparc:*:*:*:*:* 28
cpe:2.3:o:sun:solaris:2.5.1:*:ppc:*:*:*:*:* 27
cpe:2.3:o:sun:solaris:*:*:*:*:*:*:*:* 15
cpe:2.3:o:sun:solaris:9.0:x86_update_2:*:*:*:*:*:* 14
cpe:2.3:o:sun:solaris:8.0:beta:*:*:*:*:*:* 6
cpe:2.3:o:sun:solaris:*:*:x86:*:*:*:*:* 6
cpe:2.3:o:sun:solaris:10.0:hw2:*:*:*:*:*:* 5
cpe:2.3:o:sun:solaris:10.0:*:64_bit:*:*:*:*:* 5
cpe:2.3:o:sun:solaris:1.1.3:u1:*:*:*:*:*:* 5
cpe:2.3:o:sun:solaris:1.1.4:*:jl:*:*:*:*:* 5
cpe:2.3:o:sun:solaris:2.6:*:sparc:*:*:*:*:* 4
cpe:2.3:o:sun:solaris:7.0:*:sparc:*:*:*:*:* 4
cpe:2.3:o:sun:solaris:10.0:unkown:x86:*:*:*:*:* 3
cpe:2.3:o:sun:solaris:2.5.1:*:sparc:*:*:*:*:* 3
cpe:2.3:o:sun:solaris:8.0:unkown:x86:*:*:*:*:* 3
cpe:2.3:o:sun:solaris:10.0:*:x86_sparc:*:*:*:*:* 2
cpe:2.3:o:sun:solaris:9.0:unkown:x86:*:*:*:*:* 2
cpe:2.3:o:sun:solaris:10:*:64bit:*:*:*:*:* 2
cpe:2.3:o:sun:solaris:5.5.1:*:x86:*:*:*:*:* 2
cpe:2.3:o:sun:solaris:5.4:*:x86:*:*:*:*:* 2
cpe:2.3:o:sun:solaris:5.6:*:x86:*:*:*:*:* 2
cpe:2.3:o:sun:solaris:5.5:*:x86:*:*:*:*:* 2
cpe:2.3:o:sun:solaris:2.5:*:sparc:*:*:*:*:* 2
cpe:2.3:o:sun:solaris:5.8:*:x86:*:*:*:*:* 2
cpe:2.3:o:sun:solaris:10:_nil_:x86:*:*:*:*:* 2
cpe:2.3:o:sun:solaris:10:_nil_:sparc:*:*:*:*:* 2
cpe:2.3:o:sun:solaris:9.0:*:*:*:*:sparc:*:* 2
cpe:2.3:o:sun:solaris:10:*:*:ko:*:*:sparc:* 2
cpe:2.3:o:sun:solaris:10:*:*:ko:*:*:x86:* 2
cpe:2.3:o:sun:solaris:10:*:*:th:*:*:sparc:* 2
cpe:2.3:o:sun:solaris:10:*:*:th:*:*:x86:* 2
cpe:2.3:o:sun:solaris:10:*:*:zh:*:*:sparc:* 2
cpe:2.3:o:sun:solaris:10:*:*:zh:*:*:x86:* 2
cpe:2.3:o:sun:solaris:2.6:*:x86:*:*:*:*:* 1
cpe:2.3:o:sun:solaris:7:*:*:*:*:*:*:* 1

Related : CVE

This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
  Date Alert Description
6.8 2010-07-02 CVE-2010-2594

Multiple cross-site request forgery (CSRF) vulnerabilities in the web management interface in InterSect Alliance Snare Agent 3.2.3 and earlier on Solaris, Snare Agent 3.1.7 and earlier on Windows, Snare Agent 1.5.0 and earlier on Linux and AIX, Snare Agent 1.4 and earlier on IRIX, Snare Epilog 1.5.3 and earlier on Windows, and Snare Epilog 1.2 and earlier on UNIX allow remote attackers to hijack the authentication of administrators for requests that (1) change the password or (2) change the listening port.

4 2010-04-21 CVE-2009-4774

Unspecified vulnerability in Sun Solaris 10 and OpenSolaris snv_49 through snv_117, when 64bit mode is used on the Intel x86 platform and a Linux (lx) branded zone is configured, allows local users to cause a denial of service (panic) via unspecified vectors, a different vulnerability than CVE-2007-6225.

3.3 2010-03-29 CVE-2010-1183

Certain patch-installation scripts in Oracle Solaris allow local users to append data to arbitrary files via a symlink attack on the /tmp/CLEANUP temporary file, related to use of Update Manager.

4.9 2010-02-03 CVE-2010-0453

The ucode_ioctl function in intel/io/ucode_drv.c in Sun Solaris 10 and OpenSolaris snv_69 through snv_133, when running on x86 architectures, allows local users to cause a denial of service (panic) via a request with a 0 size value to the UCODE_GET_VERSION IOCTL, which triggers a NULL pointer dereference in the ucode_get_rev function, related to retrieval of the microcode revision.

6.8 2010-01-14 CVE-2010-0310

Trusted Extensions in Sun Solaris 10 allows local users to gain privileges via vectors related to omission of unspecified libraries from software updates.

5 2009-11-25 CVE-2009-4075

Unspecified vulnerability in the timeout mechanism in sshd in Sun Solaris 10, and OpenSolaris snv_99 through snv_123, allows remote attackers to cause a denial of service (daemon outage) via unknown vectors that trigger a "dangling sshd authentication thread."

7.8 2009-11-06 CVE-2009-3899

Memory leak in the Sockets Direct Protocol (SDP) driver in Sun Solaris 10, and OpenSolaris snv_57 through snv_94, allows remote attackers to cause a denial of service (memory consumption) via unspecified vectors.

7.2 2009-11-03 CVE-2009-3851

Trusted Extensions in Sun Solaris 10 interferes with the operation of the xscreensaver-demo command for the XScreenSaver application, which makes it easier for physically proximate attackers to access an unattended workstation for which the intended screen locking did not occur, related to the "restart daemon."

6.8 2009-11-02 CVE-2009-3839

Unspecified vulnerability in the Solaris Trusted Extensions Policy configuration in Sun Solaris 10, and OpenSolaris snv_37 through snv_125, might allow remote attackers to execute arbitrary code by leveraging access to the X server.

1.9 2009-10-22 CVE-2009-3746

XScreenSaver in Sun Solaris 10, when the accessibility feature is enabled, allows physically proximate attackers to obtain sensitive information by reading popup windows, which are displayed even when the screen is locked, a different vulnerability than CVE-2009-1276 and CVE-2009-2711.

4.4 2009-10-16 CVE-2009-3706

Unspecified vulnerability in the ZFS filesystem in Sun Solaris 10, and OpenSolaris snv_100 through snv_117, allows local users to bypass intended limitations of the file_chown_self privilege via certain uses of the chown system call.

4.9 2009-10-01 CVE-2009-3519

Multiple memory leaks in the IP module in the kernel in Sun Solaris 8 through 10, and OpenSolaris before snv_109, allow local users to cause a denial of service (memory consumption) via vectors related to (1) M_DATA, (2) M_PROTO, (3) M_PCPROTO, and (4) M_SIG STREAMS messages.

6.9 2009-09-29 CVE-2009-3468

Multiple unspecified vulnerabilities in Common Desktop Environment (CDE) in Sun Solaris 10, when Trusted Extensions is enabled, allow local users to execute arbitrary commands or bypass the Mandatory Access Control (MAC) policy via unknown vectors, related to a menu typo and the Style Manager.

1.9 2009-09-28 CVE-2009-3432

Unspecified vulnerability in xscreensaver in Sun Solaris 10, and OpenSolaris before snv_112, when Xorg or Xnewt is used and RandR is enabled, allows physically proximate attackers to read a locked screen via unknown vectors related to XRandR resize events.

7.2 2009-09-14 CVE-2009-3183

Heap-based buffer overflow in w in Sun Solaris 8 through 10, and OpenSolaris before snv_124, allows local users to gain privileges via unspecified vectors.

7.1 2009-09-10 CVE-2009-3164

Unspecified vulnerability in the IPv6 networking stack in Sun Solaris 10, and OpenSolaris snv_01 through snv_82 and snv_111 through snv_122, when a Cassini GigaSwift Ethernet Adapter (aka CE) interface is used, allows remote attackers to cause a denial of service (panic) via vectors involving jumbo frames. NOTE: this issue exists because of an incomplete fix for CVE-2009-2136.

4 2009-09-08 CVE-2009-3100

xscreensaver (aka Gnome-XScreenSaver) in Sun Solaris 9 and 10, OpenSolaris snv_109 through snv_122, and X11 6.4.1 on Solaris 8 does not properly handle Accessibility support, which allows local users to cause a denial of service (system hang) by locking the screen and then attempting to launch an Accessibility pop-up window, related to a regression in certain Solaris and OpenSolaris patches.

7.1 2009-08-28 CVE-2009-3000

The sockfs module in the kernel in Sun Solaris 10 and OpenSolaris snv_41 through snv_122, when Network Cache Accelerator (NCA) logging is enabled, allows remote attackers to cause a denial of service (panic) via unspecified web-server traffic that triggers a NULL pointer dereference in the nl7c_http_log function, related to "improper http response handling."

7.8 2009-08-27 CVE-2009-2972

in.lpd in the print service in Sun Solaris 8 and 9 allows remote attackers to cause a denial of service (memory consumption) via unspecified vectors that trigger a "fork()/exec() bomb."

4.9 2009-08-24 CVE-2009-2952

Unspecified vulnerability in the pollwakeup function in Sun Solaris 10, and OpenSolaris before snv_51, allows local users to cause a denial of service (panic) via unknown vectors.

4.9 2009-08-21 CVE-2009-2912

The (1) sendfile and (2) sendfilev functions in Sun Solaris 8 through 10, and OpenSolaris before snv_110, allow local users to cause a denial of service (panic) via vectors related to vnode function calls.

4.9 2009-08-19 CVE-2009-2857

The kernel in Sun Solaris 8, 9, and 10, and OpenSolaris before snv_103, does not properly handle interaction between the filesystem and virtual-memory implementations, which allows local users to cause a denial of service (deadlock and system halt) via vectors involving mmap and write operations on the same file.

4.9 2009-08-07 CVE-2009-2711

XScreenSaver in Sun Solaris 9 and 10, OpenSolaris before snv_120, and X11 6.4.1 for Solaris 8, when the Xorg or Xnewt server is used, allows physically proximate attackers to obtain sensitive information by reading popup windows, which are displayed even when the screen is locked, a different vulnerability than CVE-2009-1276.

6.8 2009-08-03 CVE-2009-2652

Unspecified vulnerability in Solaris Trusted Extensions in Sun Solaris 10, and OpenSolaris snv_37 through snv_120, allows remote attackers to cause a denial of service (panic) via vectors involving the parsing of labeled packets.

4.9 2009-07-29 CVE-2009-2644

Race condition in the Solaris Auditing subsystem in Sun Solaris 9 and 10 and OpenSolaris before snv_121, when extended file attributes are used, allows local users to cause a denial of service (panic) via vectors related to "pathnames for invalid fds."

CWE : Common Weakness Enumeration

%idName
26% (25) CWE-399 Resource Management Errors
18% (17) CWE-264 Permissions, Privileges, and Access Controls
13% (13) CWE-362 Race Condition
7% (7) CWE-20 Improper Input Validation
6% (6) CWE-119 Failure to Constrain Operations within the Bounds of a Memory Buffer
4% (4) CWE-200 Information Exposure
4% (4) CWE-189 Numeric Errors
3% (3) CWE-16 Configuration
2% (2) CWE-310 Cryptographic Issues
2% (2) CWE-255 Credentials Management
2% (2) CWE-59 Improper Link Resolution Before File Access ('Link Following')
2% (2) CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path ...
1% (1) CWE-352 Cross-Site Request Forgery (CSRF)
1% (1) CWE-287 Improper Authentication
1% (1) CWE-134 Uncontrolled Format String
1% (1) CWE-94 Failure to Control Generation of Code ('Code Injection')
1% (1) CWE-79 Failure to Preserve Web Page Structure ('Cross-site Scripting')
1% (1) CWE-78 Improper Sanitization of Special Elements used in an OS Command ('O...

CAPEC : Common Attack Pattern Enumeration & Classification

This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
id Name
CAPEC-1 Accessing Functionality Not Properly Constrained by ACLs
CAPEC-8 Buffer Overflow in an API Call
CAPEC-9 Buffer Overflow in Local Command-Line Utilities
CAPEC-10 Buffer Overflow via Environment Variables
CAPEC-13 Subverting Environment Variable Values
CAPEC-14 Client-side Injection-induced Buffer Overflow
CAPEC-17 Accessing, Modifying or Executing Executable Files
CAPEC-24 Filter Failure through Buffer Overflow
CAPEC-26 Leveraging Race Conditions
CAPEC-27 Leveraging Race Conditions via Symbolic Links
CAPEC-29 Leveraging Time-of-Check and Time-of-Use (TOCTOU) Race Conditions
CAPEC-38 Leveraging/Manipulating Configuration File Search Paths
CAPEC-39 Manipulating Opaque Client-based Data Tokens
CAPEC-41 Using Meta-characters in E-mail Headers to Inject Malicious Payloads
CAPEC-42 MIME Conversion
CAPEC-44 Overflow Binary Resource File
CAPEC-45 Buffer Overflow via Symbolic Links
CAPEC-46 Overflow Variables and Tags
CAPEC-47 Buffer Overflow via Parameter Expansion
CAPEC-51 Poison Web Service Registry
CAPEC-58 Restful Privilege Elevation
CAPEC-59 Session Credential Falsification through Prediction
CAPEC-60 Reusing Session IDs (aka Session Replay)
CAPEC-67 String Format Overflow in syslog()
CAPEC-68 Subvert Code-signing Facilities

Oval Markup Language : Definitions

This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
OvalID Name
oval:org.mitre.oval:def:6051 Security vulnerability in the BIND executable
oval:org.mitre.oval:def:5931 The vacation program erroneously passes parameters to sendmail.
oval:org.mitre.oval:def:6076 automountd can run user programs as root.
oval:org.mitre.oval:def:5571 ttsession uses weak RPC authentication mechanism
oval:org.mitre.oval:def:1880 CDE dtspcd Daemon Symlink Vulnerability
oval:org.mitre.oval:def:3078 CDE AddSuLog Function Buffer Overflow
oval:org.mitre.oval:def:5482 Buffer overflow vulnerability in the CDE Calendar Manager Service Daemon, rpc...
oval:org.mitre.oval:def:1470 Alternate ps Command Information Disclosure Vulnerability
oval:org.mitre.oval:def:7 Solaris 8 kcms_configure Command-Line Buffer Overflow
oval:org.mitre.oval:def:65 Solaris 7 kcms_configure Command-Line Buffer Overflow
oval:org.mitre.oval:def:56 Solaris 8 rpc.yppasswdd Buffer Overrun Vulnerability
oval:org.mitre.oval:def:102 Solaris 7 rpc.yppasswdd Buffer Overrun Vulnerability
oval:org.mitre.oval:def:2025 System V login Buffer Overflow
oval:org.mitre.oval:def:47 Solaris 8 whodo Buffer Overflow Vulnerability
oval:org.mitre.oval:def:34 Solaris 7 whodo Buffer Overflow Vulnerability
oval:org.mitre.oval:def:31 Solaris 8/9 cachefsd Heap Overflow Vulnerability
oval:org.mitre.oval:def:124 Solaris 7 cachefsd Heap Overflow Vulnerability
oval:org.mitre.oval:def:97 Solaris cachefsd Buffer Overrun Vulnerability
oval:org.mitre.oval:def:43 Solaris 7 cachefsd Buffer Overrun Vulnerability
oval:org.mitre.oval:def:4329 cachefsd DoS via Invalid RPC Request
oval:org.mitre.oval:def:60 Solaris 8 AdminTool Media Installation Path Buffer Overflow
oval:org.mitre.oval:def:48 Solaris 7 AdminTool Media Installation Path Buffer Overflow
oval:org.mitre.oval:def:68 Solaris 7 admintool Local Buffer Overflow
oval:org.mitre.oval:def:67 Solaris 8 admintool Local Buffer Overflow
oval:org.mitre.oval:def:86 Solaris 8 LBXProxy Display Name Buffer Overflow

SAINT Exploits

Description Link
cachefsd heap overflow More info here
Samba call_trans2open buffer overflow More info here
Solaris loadable kernel module directory traversal More info here
Solaris telnetd authentication bypass More info here
System V login argument array buffer overflow More info here
sadmind AUTH_SYS authentication vulnerability More info here
snmpXdmid buffer overflow More info here

Open Source Vulnerability Database (OSVDB)

This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
id Description
65829 Snare Agent Multiple Unspecified CSRF
63429 Solaris Update Manager tmp/CLEANUP Temporary File Symlink Arbitrary File Modi...
62046 Solaris Microcode Device UCODE_GET_VERSION IOCTL NULL Dereference Local DoS
61660 Solaris Trusted Extensions Library Installation Weakness Local Privilege Esca...
60995 Solaris in.iked ISAKMP Protocol Unspecified Malformed Input Remote DoS (PROTOS)
60498 Solaris sshd(1M) Timeout Mechanism Unspecified Remote DoS
60454 dtterm Window Title Escape Sequence Arbitrary Command Execution
60301 Solaris vfs_getvfssw Function Traversal Arbitrary Kernel Module Loading Privi...
60298 Solaris Multiple Patches Basic Security Module (BSM) Auditing Disablement
60103 Solaris Serial Console Terminal Unspecified Local Information Disclosure
60063 Solaris /dev/poll NULL Pointer Dereference Unspecified Local DoS
60003 Solaris Volume Manager Daemon (vold) Unspecified Local Overflow
59830 Solaris utmp_update Function Local Overflow
59703 Solaris Trusted Extensions XScreenSaver xscreensaver-demo Command Restart Dae...
59657 Solaris Sockets Direct Protocol (SDP) driver (sdp(7D)) Unspecified Remote Ker...
59354 Solaris Trusted Extensions Policy Unspecified Remote Bypass
59049 ZFS Filesystem on Solaris file_chown_self Privilege Local Restriction Bypass
58449 Solaris Kernel IP Module Unspecified Local DoS
58319 Solaris Trusted Extensions Common Desktop Environment (CDE) Unspecified Local...
58278 Solaris xscreensaver RandR Extension Resized Locked Screen Information Disclo...
58110 Solaris w(1) Utility Local Overflow
58005 Solaris lx Branded Zones Unspecified Local DoS
57895 Solaris Gnome-XScreenSaver (xscreensaver) Multiple Method Local Screen Lock DoS
57823 Solaris IPv6 Networking Stack Cassini Gigabit-Ethernet Device Driver (ce(7D))...
57457 Solaris sockfs Kernel Module Unspecified HTTP Requests Remote DoS

ExploitDB Exploits

id Description
28789 Sun Solaris Netscape Portable Runtime API 4.6.1 Local Privilege Escalation Vu...
28788 Sun Solaris Netscape Portable Runtime API 4.6.1 Local Privilege Escalation Vu...
25389 Multiple Vendor ICMP Message Handling DoS
25388 Multiple Vendor ICMP Implementation Malformed Path MTU DoS
25387 Multiple Vendor ICMP Implementation Spoofed Source Quench Packet DoS
23765 Sun Solaris 8/9 Unspecified Passwd Local Root Compromise Vulnerability
21180 Solaris/SPARC 2.5.1/2.6/7/8 Derived 'login' Buffer Overflow Vulnerability
11351 Solaris/Open Solaris UCODE_GET_VERSION IOCTL Denial of Service
4601 Ubuntu 6.06 DHCPd bug Remote Denial of Service Exploit
2641 Solaris 10 libnspr - constructor Local Root Exploit
2569 Solaris 10 libnspr - LD_PRELOAD Arbitrary File Creation Local Root Exploit
2543 Solaris 10 (libnspr) - Arbitrary File Creation Local Root Exploit
2360 X11R6 <= 6.4 XKEYBOARD - Local Buffer Overflow Exploit (solaris/sparc)
2241 Solaris 10 sysinfo(2) - Local Kernel Memory Disclosure Exploit
1182 Solaris 2.6/7/8/9 (ld.so.1) Local Root Exploit (sparc)
948 Multiple OS (Win32/Aix/Cisco) - Crafted ICMP Messages DoS Exploit
716 Solaris 2.5.1/2.6/7/8 rlogin /bin/login - Buffer Overflow Exploit (SPARC)
715 Solaris 8/9 passwd circ() Local Root Exploit

OpenVAS Exploits

This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
id Description
2011-11-21 Name : Microsoft Windows Internet Protocol Validation Remote Code Execution Vulnerab...
File : nvt/secpod_ms_windows_ip_validation_code_exec_vuln.nasl
2011-09-27 Name : CDE ToolTalk RPC Database Server Multiple Vulnerabilities
File : nvt/secpod_tooltalk_rpc_database_server_mult_vuln.nasl
2011-09-22 Name : Calendar Manager Service rpc.cmsd Service Detection
File : nvt/gb_cde_rpc_cmsd_service_detect.nasl
2009-10-13 Name : Solaris Update for in.dhcpd libresolv and BIND9 112837-20
File : nvt/gb_solaris_112837_20.nasl
2009-10-13 Name : Solaris Update for in.dhcpd libresolv and BIND9 114265-19
File : nvt/gb_solaris_114265_19.nasl
2009-10-13 Name : Solaris Update for IKE 114435-15
File : nvt/gb_solaris_114435_15.nasl
2009-10-13 Name : Solaris Update for KCMS 114636-05
File : nvt/gb_solaris_114636_05.nasl
2009-10-13 Name : Solaris Update for KCMS security fixes 114637-05
File : nvt/gb_solaris_114637_05.nasl
2009-10-13 Name : Solaris Update for sadmind 116453-03
File : nvt/gb_solaris_116453_03.nasl
2009-10-13 Name : Solaris Update for CDE 1.6 139620-01
File : nvt/gb_solaris_139620_01.nasl
2009-10-13 Name : Solaris Update for rpc.nisd 140917-02
File : nvt/gb_solaris_140917_02.nasl
2009-10-13 Name : Solaris Update for rpc.nisd 140918-02
File : nvt/gb_solaris_140918_02.nasl
2009-10-13 Name : Solaris Update for c2audit and auditconfig 140921-02
File : nvt/gb_solaris_140921_02.nasl
2009-10-13 Name : Solaris Update for c2audit and auditconfig 140922-02
File : nvt/gb_solaris_140922_02.nasl
2009-10-13 Name : Solaris Update for ipf ipftest 141020-03
File : nvt/gb_solaris_141020_03.nasl
2009-10-13 Name : Solaris Update for ipf ipftest 141021-03
File : nvt/gb_solaris_141021_03.nasl
2009-10-13 Name : Solaris Update for kernel 141414-10
File : nvt/gb_solaris_141414_10.nasl
2009-10-13 Name : Solaris Update for kernel 141415-10
File : nvt/gb_solaris_141415_10.nasl
2009-10-13 Name : Solaris Update for w and whodo 142285-01
File : nvt/gb_solaris_142285_01.nasl
2009-10-13 Name : Solaris Update for w and whodo 142286-01
File : nvt/gb_solaris_142286_01.nasl
2009-09-23 Name : Solaris Update for sadmind 116442-02
File : nvt/gb_solaris_116442_02.nasl
2009-09-23 Name : Solaris Update for sadmind 116454-03
File : nvt/gb_solaris_116454_03.nasl
2009-09-23 Name : Solaris Update for sadmind 116455-02
File : nvt/gb_solaris_116455_02.nasl
2009-09-23 Name : Solaris Update for rpc.nisd 140918-01
File : nvt/gb_solaris_140918_01.nasl
2009-09-23 Name : Solaris Update for c2audit and auditconfig 140921-01
File : nvt/gb_solaris_140921_01.nasl

Information Assurance Vulnerability Management (IAVM)

id Description
2014-A-0012 Multiple Vulnerabilities in Oracle & Sun Systems Product Suite
Severity: Category I - VMSKEY: V0043396
2010-A-0013 Sun Solaris Trusted Extensions Missing Libraries Local Privilege Escalation V...
Severity: Category I - VMSKEY: V0022381
2009-A-0113 Sun Solaris Remote Privilege Escalation Vulnerability
Severity: Category I - VMSKEY: V0021928
2009-A-0085 Multiple Vulnerabilities in Solaris Trusted Extensions Common Desktop Environ...
Severity: Category I - VMSKEY: V0021628
2009-T-0047 Sun Solaris Kernel Denial of Service Vulnerability
Severity: Category I - VMSKEY: V0019908
2009-T-0048 Sun Solaris Print Service Vulnerability
Severity: Category I - VMSKEY: V0019905
2009-T-0040 Sun Solaris Network File System Unauthorized Network Access Vulnerability
Severity: Category II - VMSKEY: V0019716
2009-T-0028 Multiple Buffer Overflow Vulnerabilities in Sun Solaris
Severity: Category II - VMSKEY: V0019230
2009-T-0008 Sun Solaris IKE Packet Handling Security Vulnerability
Severity: Category I - VMSKEY: V0018293
2009-T-0003 Sun Solaris 10 IPv4 Forwarding Denial of Service Vulnerability
Severity: Category II - VMSKEY: V0017995
2009-T-0001 Sun Solaris X Inter Client Exchange Library (libICE) Denial of Service Vulner...
Severity: Category I - VMSKEY: V0017981
2008-T-0066 Sun Solaris Denial of Service Vulnerability
Severity: Category I - VMSKEY: V0017916
2008-T-0043 Multiple Sun Solaris snoop Vulnerabilities
Severity: Category II - VMSKEY: V0017141
2008-T-0029 Sun Solaris Unspecified Remote Denial of Service Vulnerability
Severity: Category II - VMSKEY: V0016060
2008-T-0018 Sun Solaris SCTP Denial of Service Vulnerabilities
Severity: Category I - VMSKEY: V0016009
2008-T-0014 Sun Solaris Self Encapsulated IP Packets Remote Denial of Service Vulnerability
Severity: Category II - VMSKEY: V0015979
2008-T-0002 Sun Solaris 10 NFS netgroups Remote Security Bypass Vulnerability
Severity: Category I - VMSKEY: V0015601
2007-B-0006 Sun Solaris Telnet Remote Authentication Bypass Vulnerability
Severity: Category I - VMSKEY: V0013607
2005-T-0043 Sun Solaris Management Console HTTP TRACE Information Disclosure Vulnerability
Severity: Category II - VMSKEY: V0011706

Snort® IPS/IDS

This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
Date Description
2014-01-10 RCPT TO overflow
RuleID : 654-community - Type : SERVER-MAIL - Revision : 28
2014-01-10 RCPT TO overflow
RuleID : 654 - Type : SERVER-MAIL - Revision : 28
2014-01-10 portmap snmpXdmi request TCP
RuleID : 593-community - Type : PROTOCOL-RPC - Revision : 31
2014-01-10 portmap snmpXdmi request TCP
RuleID : 593 - Type : PROTOCOL-RPC - Revision : 31
2014-01-10 portmap ttdbserv request UDP
RuleID : 588-community - Type : PROTOCOL-RPC - Revision : 27
2014-01-10 portmap ttdbserv request UDP
RuleID : 588 - Type : PROTOCOL-RPC - Revision : 27
2014-01-10 Solaris UDP portmap sadmin port query request attempt
RuleID : 585-community - Type : PROTOCOL-RPC - Revision : 18
2014-01-10 Solaris UDP portmap sadmin port query request attempt
RuleID : 585 - Type : PROTOCOL-RPC - Revision : 18
2014-01-10 portmap amountd request UDP
RuleID : 576-community - Type : PROTOCOL-RPC - Revision : 17
2014-01-10 portmap amountd request UDP
RuleID : 576 - Type : PROTOCOL-RPC - Revision : 17
2014-01-10 snmpXdmi overflow attempt TCP
RuleID : 569-community - Type : PROTOCOL-RPC - Revision : 25
2014-01-10 snmpXdmi overflow attempt TCP
RuleID : 569 - Type : PROTOCOL-RPC - Revision : 25
2014-01-10 Source Quench
RuleID : 477 - Type : ICMP - Revision : 6
2017-08-29 Sun Solaris dhcpd malformed bootp denial of service attempt
RuleID : 43752 - Type : SERVER-OTHER - Revision : 2
2014-01-10 Oracle Solaris LPD overflow attempt
RuleID : 3527 - Type : OS-SOLARIS - Revision : 13
2014-01-10 login buffer non-evasive overflow attempt
RuleID : 3274-community - Type : PROTOCOL-TELNET - Revision : 14
2014-01-10 login buffer non-evasive overflow attempt
RuleID : 3274 - Type : PROTOCOL-TELNET - Revision : 14
2014-01-10 UDP inverse query overflow
RuleID : 3154-community - Type : PROTOCOL-DNS - Revision : 12
2014-01-10 UDP inverse query overflow
RuleID : 3154 - Type : PROTOCOL-DNS - Revision : 12
2014-01-10 TCP inverse query overflow
RuleID : 3153-community - Type : PROTOCOL-DNS - Revision : 9
2014-01-10 TCP inverse query overflow
RuleID : 3153 - Type : PROTOCOL-DNS - Revision : 9
2014-01-10 login buffer overflow attempt
RuleID : 3147-community - Type : PROTOCOL-TELNET - Revision : 15
2014-01-10 login buffer overflow attempt
RuleID : 3147 - Type : PROTOCOL-TELNET - Revision : 15
2014-01-10 Oracle Solaris npls x86 overflow
RuleID : 300-community - Type : OS-SOLARIS - Revision : 13
2014-01-10 Oracle Solaris npls x86 overflow
RuleID : 300 - Type : OS-SOLARIS - Revision : 13

Nessus® Vulnerability Scanner

This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
id Description
2017-05-08 Name: The remote device is missing a vendor-supplied security patch.
File: f5_bigip_SOL23440942.nasl - Type: ACT_GATHER_INFO
2015-09-18 Name: The remote device is missing a vendor-supplied security patch.
File: f5_bigip_SOL4583.nasl - Type: ACT_GATHER_INFO
2015-04-02 Name: The remote host is missing Sun security patch number 119059-46.
File: solaris10_119059_46.nasl - Type: ACT_GATHER_INFO
2015-04-02 Name: The remote host is missing Sun security patch number 119060-45.
File: solaris10_x86_119060_45.nasl - Type: ACT_GATHER_INFO
2014-01-27 Name: The remote host is missing Sun Security Patch number 150863-01
File: solaris8_150863.nasl - Type: ACT_GATHER_INFO
2014-01-27 Name: The remote host is missing Sun Security Patch number 113911-02
File: solaris9_113911.nasl - Type: ACT_GATHER_INFO
2013-07-03 Name: The remote host is missing Sun Security Patch number 143502-01
File: solaris10_143502.nasl - Type: ACT_GATHER_INFO
2013-07-03 Name: The remote host is missing Sun Security Patch number 143503-01
File: solaris10_x86_143503.nasl - Type: ACT_GATHER_INFO
2012-09-06 Name: The remote Mandrake Linux host is missing a security update.
File: mandrake_MDKSA-2003-080.nasl - Type: ACT_GATHER_INFO
2011-11-18 Name: The remote web server has a URI redirection vulnerability.
File: sun_java_web_console_uri_redirect.nasl - Type: ACT_GATHER_INFO
2010-09-01 Name: The remote device is missing a vendor-supplied security patch
File: cisco-sa-20050412-icmp.nasl - Type: ACT_GATHER_INFO
2010-02-02 Name: The remote host is missing Sun Security Patch number 143913-01
File: solaris10_x86_143913.nasl - Type: ACT_GATHER_INFO
2009-10-19 Name: The remote host is missing Sun Security Patch number 126363-10
File: solaris10_126363.nasl - Type: ACT_GATHER_INFO
2009-10-15 Name: The remote host is missing Sun Security Patch number 141444-09
File: solaris10_141444.nasl - Type: ACT_GATHER_INFO
2009-10-15 Name: The remote host is missing Sun Security Patch number 141445-09
File: solaris10_x86_141445.nasl - Type: ACT_GATHER_INFO
2009-09-23 Name: The remote host is missing Sun Security Patch number 126365-16
File: solaris10_126365.nasl - Type: ACT_GATHER_INFO
2009-09-23 Name: The remote host is missing Sun Security Patch number 139620-01
File: solaris10_139620.nasl - Type: ACT_GATHER_INFO
2009-09-23 Name: The remote host is missing Sun Security Patch number 126366-16
File: solaris10_x86_126366.nasl - Type: ACT_GATHER_INFO
2009-09-23 Name: The remote host is missing Sun Security Patch number 139621-01
File: solaris10_x86_139621.nasl - Type: ACT_GATHER_INFO
2009-07-02 Name: The remote web application has multiple cross-site scripting vulnerabilities.
File: sun_java_web_console_helpwindow_xss.nasl - Type: ACT_ATTACK
2009-04-23 Name: The remote FreeBSD host is missing one or more security-related updates.
File: freebsd_pkg_f04cc5cb2d0b11d8beaf000a95c4d922.nasl - Type: ACT_GATHER_INFO
2009-04-23 Name: The remote host is missing Sun Security Patch number 140837-01
File: solaris8_140837.nasl - Type: ACT_GATHER_INFO
2009-04-23 Name: The remote host is missing Sun Security Patch number 140838-01
File: solaris8_x86_140838.nasl - Type: ACT_GATHER_INFO
2009-04-23 Name: The remote host is missing Sun Security Patch number 138896-01
File: solaris9_138896.nasl - Type: ACT_GATHER_INFO
2009-04-23 Name: The remote host is missing Sun Security Patch number 138897-01
File: solaris9_x86_138897.nasl - Type: ACT_GATHER_INFO