This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Detail
Vendor Sun First view 2007-12-17
Product Solaris Last view 2009-11-25
Version 10 Type Os
Update *  
Edition sparc  
Language *  
Sofware Edition *  
Target Software *  
Target Hardware *  
Other *  
 
CPE Product cpe:2.3:o:sun:solaris

Activity : Overall

Related : CVE

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
  Date Alert Description
5 2009-11-25 CVE-2009-4075

Unspecified vulnerability in the timeout mechanism in sshd in Sun Solaris 10, and OpenSolaris snv_99 through snv_123, allows remote attackers to cause a denial of service (daemon outage) via unknown vectors that trigger a "dangling sshd authentication thread."

7.8 2009-11-06 CVE-2009-3899

Memory leak in the Sockets Direct Protocol (SDP) driver in Sun Solaris 10, and OpenSolaris snv_57 through snv_94, allows remote attackers to cause a denial of service (memory consumption) via unspecified vectors.

1.9 2009-10-22 CVE-2009-3746

XScreenSaver in Sun Solaris 10, when the accessibility feature is enabled, allows physically proximate attackers to obtain sensitive information by reading popup windows, which are displayed even when the screen is locked, a different vulnerability than CVE-2009-1276 and CVE-2009-2711.

4.4 2009-10-16 CVE-2009-3706

Unspecified vulnerability in the ZFS filesystem in Sun Solaris 10, and OpenSolaris snv_100 through snv_117, allows local users to bypass intended limitations of the file_chown_self privilege via certain uses of the chown system call.

4.9 2009-10-01 CVE-2009-3519

Multiple memory leaks in the IP module in the kernel in Sun Solaris 8 through 10, and OpenSolaris before snv_109, allow local users to cause a denial of service (memory consumption) via vectors related to (1) M_DATA, (2) M_PROTO, (3) M_PCPROTO, and (4) M_SIG STREAMS messages.

1.9 2009-09-28 CVE-2009-3432

Unspecified vulnerability in xscreensaver in Sun Solaris 10, and OpenSolaris before snv_112, when Xorg or Xnewt is used and RandR is enabled, allows physically proximate attackers to read a locked screen via unknown vectors related to XRandR resize events.

7.2 2009-09-14 CVE-2009-3183

Heap-based buffer overflow in w in Sun Solaris 8 through 10, and OpenSolaris before snv_124, allows local users to gain privileges via unspecified vectors.

4 2009-09-08 CVE-2009-3100

xscreensaver (aka Gnome-XScreenSaver) in Sun Solaris 9 and 10, OpenSolaris snv_109 through snv_122, and X11 6.4.1 on Solaris 8 does not properly handle Accessibility support, which allows local users to cause a denial of service (system hang) by locking the screen and then attempting to launch an Accessibility pop-up window, related to a regression in certain Solaris and OpenSolaris patches.

4.9 2009-08-24 CVE-2009-2952

Unspecified vulnerability in the pollwakeup function in Sun Solaris 10, and OpenSolaris before snv_51, allows local users to cause a denial of service (panic) via unknown vectors.

4.9 2009-08-21 CVE-2009-2912

The (1) sendfile and (2) sendfilev functions in Sun Solaris 8 through 10, and OpenSolaris before snv_110, allow local users to cause a denial of service (panic) via vectors related to vnode function calls.

4.9 2009-08-19 CVE-2009-2857

The kernel in Sun Solaris 8, 9, and 10, and OpenSolaris before snv_103, does not properly handle interaction between the filesystem and virtual-memory implementations, which allows local users to cause a denial of service (deadlock and system halt) via vectors involving mmap and write operations on the same file.

4.9 2009-08-07 CVE-2009-2711

XScreenSaver in Sun Solaris 9 and 10, OpenSolaris before snv_120, and X11 6.4.1 for Solaris 8, when the Xorg or Xnewt server is used, allows physically proximate attackers to obtain sensitive information by reading popup windows, which are displayed even when the screen is locked, a different vulnerability than CVE-2009-1276.

4.7 2009-07-27 CVE-2009-2596

Unspecified vulnerability in the Solaris Auditing subsystem in Sun Solaris 9 and 10 and OpenSolaris before snv_121, when extended file attributes are used, allows local users to cause a denial of service (panic) via vectors related to fad_aupath structure members.

4.9 2009-07-16 CVE-2009-2488

Unspecified vulnerability in the NFSv4 module in the kernel in Sun Solaris 10, and OpenSolaris snv_102 through snv_119, allows local users to cause a denial of service (client panic) via vectors involving "file operations."

7.8 2009-07-16 CVE-2009-2487

Use-after-free vulnerability in the frpr_icmp function in the ipfilter (aka IP Filter) subsystem in Sun Solaris 10, and OpenSolaris snv_45 through snv_110, allows remote attackers to cause a denial of service (panic) via unspecified vectors.

7.8 2009-07-16 CVE-2009-2486

Unspecified vulnerability in the SCTP implementation in Sun Solaris 10, and OpenSolaris before snv_120, allows remote attackers to cause a denial of service (panic) via unspecified packets.

4.6 2009-07-10 CVE-2009-2430

Unspecified vulnerability in auditconfig in Sun Solaris 8, 9, 10, and OpenSolaris snv_01 through snv_58, when Solaris Auditing is enabled, allows local users with an RBAC execution profile for auditconfig to gain privileges via unknown attack vectors.

10 2009-07-02 CVE-2009-2296

The NFSv4 server kernel module in Sun Solaris 10, and OpenSolaris before snv_119, does not properly implement the nfs_portmon setting, which allows remote attackers to access shares, and read, create, and modify arbitrary files, via unspecified vectors.

4.3 2009-07-01 CVE-2009-2283

Multiple cross-site scripting (XSS) vulnerabilities in the help jsp scripts in Sun Java Web Console 3.0.2 through 3.0.5, and Sun Java Web Console in Solaris 10, allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.

4.6 2009-07-01 CVE-2009-2282

The Virtual Network Terminal Server daemon (vntsd) for Logical Domains (aka LDoms) in Sun Solaris 10, and OpenSolaris snv_41 through snv_108, on SPARC platforms does not check authorization for guest console access, which allows local control-domain users to gain guest-domain privileges via unknown vectors.

7.8 2009-06-19 CVE-2009-2137

Memory leak in the Ultra-SPARC T2 crypto provider device driver (aka n2cp) in Sun Solaris 10, and OpenSolaris snv_54 through snv_112, allows context-dependent attackers to cause a denial of service (memory consumption) via unspecified vectors related to a large keylen value.

5 2009-06-11 CVE-2009-2029

Unspecified vulnerability in rpc.nisd in Sun Solaris 8 through 10, and OpenSolaris before snv_104, allows remote authenticated users to cause a denial of service (NIS+ daemon hang) via unspecified vectors related to NIS+ callbacks.

4.7 2009-06-05 CVE-2009-1933

Kerberos in Sun Solaris 8, 9, and 10, and OpenSolaris before snv_117, does not properly manage credential caches, which allows local users to access Kerberized NFS mount points and Kerberized NFS shares via unspecified vectors.

4.9 2009-04-29 CVE-2009-1478

Multiple unspecified vulnerabilities in the DTrace ioctl handlers in Sun Solaris 10, and OpenSolaris before snv_114, allow local users to cause a denial of service (panic) via unknown vectors.

2.1 2009-04-09 CVE-2009-1276

XScreenSaver in Sun Solaris 10 and OpenSolaris before snv_109, and Solaris 8 and 9 with GNOME 2.0 or 2.0.2, allows physically proximate attackers to obtain sensitive information by reading popup windows, which are displayed even when the screen is locked, as demonstrated by Thunderbird new-mail notifications.

CWE : Common Weakness Enumeration

%idName
33% (16) CWE-399 Resource Management Errors
12% (6) CWE-362 Race Condition
12% (6) CWE-264 Permissions, Privileges, and Access Controls
6% (3) CWE-200 Information Exposure
6% (3) CWE-189 Numeric Errors
6% (3) CWE-20 Improper Input Validation
4% (2) CWE-255 Credentials Management
4% (2) CWE-119 Failure to Constrain Operations within the Bounds of a Memory Buffer
4% (2) CWE-16 Configuration
2% (1) CWE-310 Cryptographic Issues
2% (1) CWE-287 Improper Authentication
2% (1) CWE-134 Uncontrolled Format String
2% (1) CWE-79 Failure to Preserve Web Page Structure ('Cross-site Scripting')
2% (1) CWE-59 Improper Link Resolution Before File Access ('Link Following')

CAPEC : Common Attack Pattern Enumeration & Classification

id Name
CAPEC-1 Accessing Functionality Not Properly Constrained by ACLs
CAPEC-13 Subverting Environment Variable Values
CAPEC-17 Accessing, Modifying or Executing Executable Files
CAPEC-39 Manipulating Opaque Client-based Data Tokens
CAPEC-45 Buffer Overflow via Symbolic Links
CAPEC-51 Poison Web Service Registry
CAPEC-59 Session Credential Falsification through Prediction
CAPEC-60 Reusing Session IDs (aka Session Replay)
CAPEC-76 Manipulating Input to File System Calls
CAPEC-77 Manipulating User-Controlled Variables
CAPEC-87 Forceful Browsing
CAPEC-104 Cross Zone Scripting

Open Source Vulnerability Database (OSVDB)

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
id Description
60498 Solaris sshd(1M) Timeout Mechanism Unspecified Remote DoS
59657 Solaris Sockets Direct Protocol (SDP) driver (sdp(7D)) Unspecified Remote Ker...
59049 ZFS Filesystem on Solaris file_chown_self Privilege Local Restriction Bypass
58449 Solaris Kernel IP Module Unspecified Local DoS
58278 Solaris xscreensaver RandR Extension Resized Locked Screen Information Disclo...
58110 Solaris w(1) Utility Local Overflow
57895 Solaris Gnome-XScreenSaver (xscreensaver) Multiple Method Local Screen Lock DoS
57355 Solaris pollwakeup Function Unspecified Local DoS
57169 Solaris sendfile / sendfilev Extended Library Functions Unspecified DoS
57151 Solaris Kernel Filesystem / Virtual Memory Subsystem Interaction Unspecified ...
57025 Solaris XScreenSaver (xscreensaver(1)) with Assistive Technology Support Scre...
56854 Solaris XScreenSaver (xscreensaver(1)) PopUp Window Information Disclosure
56325 Solaris Auditing Extended File Attributes (fsattr(5)) Handling Local DoS
55876 Solaris NFSv4 Kernel Module Client System Panic Local DoS
55875 Solaris SCTP Packet Handling System Panic Remote DoS
55874 Solaris IP Filter (ipf(5)) Use-after-free System Panic DoS
55519 Solaris NFSv4 Server Kernel Module nfs_portmon Tunable Shared Resource Restri...
55518 Sun Java Web Console Unspecified XSS
55330 Solaris auditconfig RBAC Execution Profile Local Privilege Escalation
55329 Solaris Virtual Network Terminal Server vntsd Daemon for Logical Domains Unau...
55234 Solaris Ultra-SPARC T2 Crypto Provider Device Driver (n2cp(7D)) Memory Exhaus...
55049 Solaris rpc.nisd(1M) NIS+ Server Unspecified DoS
54979 Kerberos on Solaris Local NFS Mount/Share Credential Cache Management Unspeci...
54138 Solaris DTrace IOCTL Handlers Local DoS
53628 Solaris XScreenSaver PopUp Window Information Disclosure

OpenVAS Exploits

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
id Description
2009-10-13 Name : Solaris Update for rpc.nisd 140917-02
File : nvt/gb_solaris_140917_02.nasl
2009-10-13 Name : Solaris Update for rpc.nisd 140918-02
File : nvt/gb_solaris_140918_02.nasl
2009-10-13 Name : Solaris Update for c2audit and auditconfig 140921-02
File : nvt/gb_solaris_140921_02.nasl
2009-10-13 Name : Solaris Update for c2audit and auditconfig 140922-02
File : nvt/gb_solaris_140922_02.nasl
2009-10-13 Name : Solaris Update for ipf ipftest 141020-03
File : nvt/gb_solaris_141020_03.nasl
2009-10-13 Name : Solaris Update for ipf ipftest 141021-03
File : nvt/gb_solaris_141021_03.nasl
2009-10-13 Name : Solaris Update for kernel 141414-10
File : nvt/gb_solaris_141414_10.nasl
2009-10-13 Name : Solaris Update for kernel 141415-10
File : nvt/gb_solaris_141415_10.nasl
2009-10-13 Name : Solaris Update for IKE 114435-15
File : nvt/gb_solaris_114435_15.nasl
2009-10-13 Name : Solaris Update for w and whodo 142285-01
File : nvt/gb_solaris_142285_01.nasl
2009-10-13 Name : Solaris Update for w and whodo 142286-01
File : nvt/gb_solaris_142286_01.nasl
2009-09-23 Name : Solaris Update for kernel 141415-04
File : nvt/gb_solaris_141415_04.nasl
2009-09-23 Name : Solaris Update for klmmod 141734-03
File : nvt/gb_solaris_141734_03.nasl
2009-09-23 Name : Solaris Update for fasttrap 141765-01
File : nvt/gb_solaris_141765_01.nasl
2009-09-23 Name : Solaris Update for ipf ipftest 141021-01
File : nvt/gb_solaris_141021_01.nasl
2009-09-23 Name : Solaris Update for fasttrap 141766-01
File : nvt/gb_solaris_141766_01.nasl
2009-09-23 Name : Solaris Update for ipf ipftest 141020-01
File : nvt/gb_solaris_141020_01.nasl
2009-09-23 Name : Solaris Update for c2audit and auditconfig 140922-01
File : nvt/gb_solaris_140922_01.nasl
2009-09-23 Name : Solaris Update for c2audit and auditconfig 140921-01
File : nvt/gb_solaris_140921_01.nasl
2009-09-23 Name : Solaris Update for rpc.nisd 140918-01
File : nvt/gb_solaris_140918_01.nasl
2009-07-09 Name : Sun Java Web Console Multiple XSS Vulnerabilities
File : nvt/gb_sun_java_web_console_xss_vuln.nasl
2009-06-03 Name : Solaris Update for usr/bin/dircmp 140837-01
File : nvt/gb_solaris_140837_01.nasl
2009-06-03 Name : Solaris Update for usr/bin/dircmp 140838-01
File : nvt/gb_solaris_140838_01.nasl
2009-06-03 Name : Solaris Update for vi and ex 120830-06
File : nvt/gb_solaris_120830_06.nasl
2009-06-03 Name : Solaris Update for edit, ex, vedit, vi and view 113031-04
File : nvt/gb_solaris_113031_04.nasl

Information Assurance Vulnerability Management (IAVM)

id Description
2009-T-0040 Sun Solaris Network File System Unauthorized Network Access Vulnerability
Severity: Category II - VMSKEY: V0019716
2009-T-0008 Sun Solaris IKE Packet Handling Security Vulnerability
Severity: Category I - VMSKEY: V0018293
2009-T-0003 Sun Solaris 10 IPv4 Forwarding Denial of Service Vulnerability
Severity: Category II - VMSKEY: V0017995
2009-T-0001 Sun Solaris X Inter Client Exchange Library (libICE) Denial of Service Vulner...
Severity: Category I - VMSKEY: V0017981
2008-T-0043 Multiple Sun Solaris snoop Vulnerabilities
Severity: Category II - VMSKEY: V0017141
2008-T-0018 Sun Solaris SCTP Denial of Service Vulnerabilities
Severity: Category I - VMSKEY: V0016009
2008-T-0014 Sun Solaris Self Encapsulated IP Packets Remote Denial of Service Vulnerability
Severity: Category II - VMSKEY: V0015979
2008-T-0002 Sun Solaris 10 NFS netgroups Remote Security Bypass Vulnerability
Severity: Category I - VMSKEY: V0015601

Snort® IPS/IDS

Date Description
2014-01-10 IBM AIX and Oracle Solaris nfsd v4 nfs_portmon security bypass attempt
RuleID : 20248 - Type : PROTOCOL-RPC - Revision : 4

Nessus® Vulnerability Scanner

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
id Description
2015-04-02 Name: The remote host is missing Sun security patch number 119060-45.
File: solaris10_x86_119060_45.nasl - Type: ACT_GATHER_INFO
2015-04-02 Name: The remote host is missing Sun security patch number 119059-46.
File: solaris10_119059_46.nasl - Type: ACT_GATHER_INFO
2011-11-18 Name: The remote web server has a URI redirection vulnerability.
File: sun_java_web_console_uri_redirect.nasl - Type: ACT_GATHER_INFO
2009-10-15 Name: The remote host is missing Sun Security Patch number 141445-09
File: solaris10_x86_141445.nasl - Type: ACT_GATHER_INFO
2009-10-15 Name: The remote host is missing Sun Security Patch number 141444-09
File: solaris10_141444.nasl - Type: ACT_GATHER_INFO
2009-07-02 Name: The remote web application has multiple cross-site scripting vulnerabilities.
File: sun_java_web_console_helpwindow_xss.nasl - Type: ACT_ATTACK
2009-04-23 Name: The remote host is missing Sun Security Patch number 140837-01
File: solaris8_140837.nasl - Type: ACT_GATHER_INFO
2009-04-23 Name: The remote host is missing Sun Security Patch number 138897-01
File: solaris9_x86_138897.nasl - Type: ACT_GATHER_INFO
2009-04-23 Name: The remote host is missing Sun Security Patch number 140838-01
File: solaris8_x86_140838.nasl - Type: ACT_GATHER_INFO
2009-04-23 Name: The remote host is missing Sun Security Patch number 138896-01
File: solaris9_138896.nasl - Type: ACT_GATHER_INFO
2009-02-02 Name: The remote host is missing Sun Security Patch number 140427-01
File: solaris9_x86_140427.nasl - Type: ACT_GATHER_INFO
2009-02-02 Name: The remote host is missing Sun Security Patch number 140426-01
File: solaris9_140426.nasl - Type: ACT_GATHER_INFO
2009-01-19 Name: The remote host is missing Sun Security Patch number 138578-01
File: solaris9_x86_138578.nasl - Type: ACT_GATHER_INFO
2009-01-19 Name: The remote host is missing Sun Security Patch number 138577-01
File: solaris9_138577.nasl - Type: ACT_GATHER_INFO
2008-09-17 Name: The remote host is missing Sun Security Patch number 113031-04
File: solaris9_113031.nasl - Type: ACT_GATHER_INFO
2008-09-17 Name: The remote host is missing Sun Security Patch number 116479-02
File: solaris9_x86_116479.nasl - Type: ACT_GATHER_INFO
2008-08-17 Name: The remote host is missing Sun Security Patch number 108964-11
File: solaris8_108964.nasl - Type: ACT_GATHER_INFO
2008-08-17 Name: The remote host is missing Sun Security Patch number 108965-11
File: solaris8_x86_108965.nasl - Type: ACT_GATHER_INFO
2008-08-17 Name: The remote host is missing Sun Security Patch number 112915-06
File: solaris9_112915.nasl - Type: ACT_GATHER_INFO
2008-08-17 Name: The remote host is missing Sun Security Patch number 114262-05
File: solaris9_x86_114262.nasl - Type: ACT_GATHER_INFO
2008-05-17 Name: The remote host is missing Sun Security Patch number 120831-06
File: solaris10_x86_120831.nasl - Type: ACT_GATHER_INFO
2008-05-17 Name: The remote host is missing Sun Security Patch number 120830-06
File: solaris10_120830.nasl - Type: ACT_GATHER_INFO
2008-05-09 Name: The remote host is missing Sun Security Patch number 127128-11
File: solaris10_x86_127128.nasl - Type: ACT_GATHER_INFO
2008-05-09 Name: The remote host is missing Sun Security Patch number 127127-11
File: solaris10_127127.nasl - Type: ACT_GATHER_INFO
2008-03-17 Name: The remote host is missing Sun Security Patch number 136986-03
File: solaris8_x86_136986.nasl - Type: ACT_GATHER_INFO