This CPE summary could be partial or incomplete. Please contact us for a detailed listing.


Vendor Sun First view 1997-02-01
Product Solaris Last view 2008-06-16
Version 1.1.3 Type Os
Update u1  
Edition *  
Language *  
Sofware Edition *  
Target Software *  
Target Hardware *  
Other *  
CPE Product cpe:2.3:o:sun:solaris

Activity : Overall

Related : CVE

  Date Alert Description
7.2 2008-06-16 CVE-2008-2710

Integer signedness error in the ip_set_srcfilter function in the IP Multicast Filter in uts/common/inet/ip/ip_multi.c in the kernel in Sun Solaris 10 and OpenSolaris before snv_92 allows local users to execute arbitrary code in other Solaris Zones via an SIOCSIPMSFILTER IOCTL request with a large value of the imsf->imsf_numsrc field, which triggers an out-of-bounds write of kernel memory. NOTE: this was reported as an integer overflow, but the root cause involves the bypass of a signed comparison.

7.2 2000-06-14 CVE-2000-0471

Buffer overflow in ufsrestore in Solaris 8 and earlier allows local users to gain root privileges via a long pathname.

7.2 1999-06-09 CVE-2000-0118

The Red Hat Linux su program does not log failed password guesses if the su process is killed before it times out, which allows local attackers to conduct brute force password guessing.

4.6 1998-05-21 CVE-1999-0303

Buffer overflow in BNU UUCP daemon (uucpd) through long hostnames.

7.2 1997-02-01 CVE-1999-0369

The Sun sdtcm_convert calendar utility for OpenWindows has a buffer overflow which can gain root access.

CWE : Common Weakness Enumeration

100% (1) CWE-189 Numeric Errors

Open Source Vulnerability Database (OSVDB)

id Description
46193 Solaris Kernel SIOCSIPMSFILTER IOCTL Request IP Multicast Filter Local Privil...
13635 Red Hat Linux su Failed Password Logging Weakness
11504 BNU UUCP Long Hostname Local Overflow
11492 Solaris OpenWindows sdtcm_convert Overflow
1398 Solaris ufsrestore pathname Overflow