Summary
| Detail | |||
|---|---|---|---|
| Vendor | Sun | First view | 2007-12-04 |
| Product | Solaris | Last view | 2010-04-21 |
| Version | 10 | Type | Os |
| Update | * | ||
| Edition | x86 | ||
| Language | * | ||
| Sofware Edition | * | ||
| Target Software | * | ||
| Target Hardware | * | ||
| Other | * | ||
| CPE Product | cpe:2.3:o:sun:solaris | ||
Activity : Overall
Related : CVE
| Date | Alert | Description | |
|---|---|---|---|
| 4 | 2010-04-21 | CVE-2009-4774 | Unspecified vulnerability in Sun Solaris 10 and OpenSolaris snv_49 through snv_117, when 64bit mode is used on the Intel x86 platform and a Linux (lx) branded zone is configured, allows local users to cause a denial of service (panic) via unspecified vectors, a different vulnerability than CVE-2007-6225. |
| 5 | 2009-11-25 | CVE-2009-4075 | Unspecified vulnerability in the timeout mechanism in sshd in Sun Solaris 10, and OpenSolaris snv_99 through snv_123, allows remote attackers to cause a denial of service (daemon outage) via unknown vectors that trigger a "dangling sshd authentication thread." |
| 7.8 | 2009-11-06 | CVE-2009-3899 | Memory leak in the Sockets Direct Protocol (SDP) driver in Sun Solaris 10, and OpenSolaris snv_57 through snv_94, allows remote attackers to cause a denial of service (memory consumption) via unspecified vectors. |
| 6.8 | 2009-11-02 | CVE-2009-3839 | Unspecified vulnerability in the Solaris Trusted Extensions Policy configuration in Sun Solaris 10, and OpenSolaris snv_37 through snv_125, might allow remote attackers to execute arbitrary code by leveraging access to the X server. |
| 1.9 | 2009-10-22 | CVE-2009-3746 | XScreenSaver in Sun Solaris 10, when the accessibility feature is enabled, allows physically proximate attackers to obtain sensitive information by reading popup windows, which are displayed even when the screen is locked, a different vulnerability than CVE-2009-1276 and CVE-2009-2711. |
| 4.4 | 2009-10-16 | CVE-2009-3706 | Unspecified vulnerability in the ZFS filesystem in Sun Solaris 10, and OpenSolaris snv_100 through snv_117, allows local users to bypass intended limitations of the file_chown_self privilege via certain uses of the chown system call. |
| 4.9 | 2009-10-01 | CVE-2009-3519 | Multiple memory leaks in the IP module in the kernel in Sun Solaris 8 through 10, and OpenSolaris before snv_109, allow local users to cause a denial of service (memory consumption) via vectors related to (1) M_DATA, (2) M_PROTO, (3) M_PCPROTO, and (4) M_SIG STREAMS messages. |
| 1.9 | 2009-09-28 | CVE-2009-3432 | Unspecified vulnerability in xscreensaver in Sun Solaris 10, and OpenSolaris before snv_112, when Xorg or Xnewt is used and RandR is enabled, allows physically proximate attackers to read a locked screen via unknown vectors related to XRandR resize events. |
| 7.2 | 2009-09-14 | CVE-2009-3183 | Heap-based buffer overflow in w in Sun Solaris 8 through 10, and OpenSolaris before snv_124, allows local users to gain privileges via unspecified vectors. |
| 4 | 2009-09-08 | CVE-2009-3100 | xscreensaver (aka Gnome-XScreenSaver) in Sun Solaris 9 and 10, OpenSolaris snv_109 through snv_122, and X11 6.4.1 on Solaris 8 does not properly handle Accessibility support, which allows local users to cause a denial of service (system hang) by locking the screen and then attempting to launch an Accessibility pop-up window, related to a regression in certain Solaris and OpenSolaris patches. |
| 4.9 | 2009-08-24 | CVE-2009-2952 | Unspecified vulnerability in the pollwakeup function in Sun Solaris 10, and OpenSolaris before snv_51, allows local users to cause a denial of service (panic) via unknown vectors. |
| 4.9 | 2009-08-21 | CVE-2009-2912 | The (1) sendfile and (2) sendfilev functions in Sun Solaris 8 through 10, and OpenSolaris before snv_110, allow local users to cause a denial of service (panic) via vectors related to vnode function calls. |
| 4.9 | 2009-08-19 | CVE-2009-2857 | The kernel in Sun Solaris 8, 9, and 10, and OpenSolaris before snv_103, does not properly handle interaction between the filesystem and virtual-memory implementations, which allows local users to cause a denial of service (deadlock and system halt) via vectors involving mmap and write operations on the same file. |
| 4.9 | 2009-08-07 | CVE-2009-2711 | XScreenSaver in Sun Solaris 9 and 10, OpenSolaris before snv_120, and X11 6.4.1 for Solaris 8, when the Xorg or Xnewt server is used, allows physically proximate attackers to obtain sensitive information by reading popup windows, which are displayed even when the screen is locked, a different vulnerability than CVE-2009-1276. |
| 4.7 | 2009-07-27 | CVE-2009-2596 | Unspecified vulnerability in the Solaris Auditing subsystem in Sun Solaris 9 and 10 and OpenSolaris before snv_121, when extended file attributes are used, allows local users to cause a denial of service (panic) via vectors related to fad_aupath structure members. |
| 4.9 | 2009-07-16 | CVE-2009-2488 | Unspecified vulnerability in the NFSv4 module in the kernel in Sun Solaris 10, and OpenSolaris snv_102 through snv_119, allows local users to cause a denial of service (client panic) via vectors involving "file operations." |
| 7.8 | 2009-07-16 | CVE-2009-2486 | Unspecified vulnerability in the SCTP implementation in Sun Solaris 10, and OpenSolaris before snv_120, allows remote attackers to cause a denial of service (panic) via unspecified packets. |
| 4.6 | 2009-07-10 | CVE-2009-2430 | Unspecified vulnerability in auditconfig in Sun Solaris 8, 9, 10, and OpenSolaris snv_01 through snv_58, when Solaris Auditing is enabled, allows local users with an RBAC execution profile for auditconfig to gain privileges via unknown attack vectors. |
| 10 | 2009-07-02 | CVE-2009-2296 | The NFSv4 server kernel module in Sun Solaris 10, and OpenSolaris before snv_119, does not properly implement the nfs_portmon setting, which allows remote attackers to access shares, and read, create, and modify arbitrary files, via unspecified vectors. |
| 4.3 | 2009-07-01 | CVE-2009-2283 | Multiple cross-site scripting (XSS) vulnerabilities in the help jsp scripts in Sun Java Web Console 3.0.2 through 3.0.5, and Sun Java Web Console in Solaris 10, allow remote attackers to inject arbitrary web script or HTML via unspecified vectors. |
| 4.7 | 2009-06-05 | CVE-2009-1933 | Kerberos in Sun Solaris 8, 9, and 10, and OpenSolaris before snv_117, does not properly manage credential caches, which allows local users to access Kerberized NFS mount points and Kerberized NFS shares via unspecified vectors. |
| 4.9 | 2009-04-29 | CVE-2009-1478 | Multiple unspecified vulnerabilities in the DTrace ioctl handlers in Sun Solaris 10, and OpenSolaris before snv_114, allow local users to cause a denial of service (panic) via unknown vectors. |
| 2.1 | 2009-04-09 | CVE-2009-1276 | XScreenSaver in Sun Solaris 10 and OpenSolaris before snv_109, and Solaris 8 and 9 with GNOME 2.0 or 2.0.2, allows physically proximate attackers to obtain sensitive information by reading popup windows, which are displayed even when the screen is locked, as demonstrated by Thunderbird new-mail notifications. |
| 4.4 | 2009-04-01 | CVE-2009-1207 | Race condition in the dircmp script in Sun Solaris 8 through 10, and OpenSolaris snv_01 through snv_111, allows local users to overwrite arbitrary files, probably involving a symlink attack on temporary files. |
| 4.7 | 2009-03-16 | CVE-2009-0913 | Unspecified vulnerability in the keysock kernel module in Solaris 10 and OpenSolaris builds snv_01 through snv_108 allows local users to cause a denial of service (system panic) via unknown vectors related to PF_KEY socket, probably related to setting socket options. |
CWE : Common Weakness Enumeration
| % | id | Name |
|---|---|---|
| 29% (14) | CWE-399 | Resource Management Errors |
| 14% (7) | CWE-362 | Race Condition |
| 14% (7) | CWE-264 | Permissions, Privileges, and Access Controls |
| 6% (3) | CWE-200 | Information Exposure |
| 6% (3) | CWE-189 | Numeric Errors |
| 6% (3) | CWE-20 | Improper Input Validation |
| 4% (2) | CWE-255 | Credentials Management |
| 4% (2) | CWE-119 | Failure to Constrain Operations within the Bounds of a Memory Buffer |
| 4% (2) | CWE-16 | Configuration |
| 2% (1) | CWE-310 | Cryptographic Issues |
| 2% (1) | CWE-287 | Improper Authentication |
| 2% (1) | CWE-134 | Uncontrolled Format String |
| 2% (1) | CWE-79 | Failure to Preserve Web Page Structure ('Cross-site Scripting') |
| 2% (1) | CWE-59 | Improper Link Resolution Before File Access ('Link Following') |
Open Source Vulnerability Database (OSVDB)
| id | Description |
|---|---|
| 60498 | Solaris sshd(1M) Timeout Mechanism Unspecified Remote DoS |
| 59657 | Solaris Sockets Direct Protocol (SDP) driver (sdp(7D)) Unspecified Remote Ker... |
| 59354 | Solaris Trusted Extensions Policy Unspecified Remote Bypass |
| 59049 | ZFS Filesystem on Solaris file_chown_self Privilege Local Restriction Bypass |
| 58449 | Solaris Kernel IP Module Unspecified Local DoS |
| 58278 | Solaris xscreensaver RandR Extension Resized Locked Screen Information Disclo... |
| 58110 | Solaris w(1) Utility Local Overflow |
| 58005 | Solaris lx Branded Zones Unspecified Local DoS |
| 57895 | Solaris Gnome-XScreenSaver (xscreensaver) Multiple Method Local Screen Lock DoS |
| 57355 | Solaris pollwakeup Function Unspecified Local DoS |
| 57169 | Solaris sendfile / sendfilev Extended Library Functions Unspecified DoS |
| 57151 | Solaris Kernel Filesystem / Virtual Memory Subsystem Interaction Unspecified ... |
| 57025 | Solaris XScreenSaver (xscreensaver(1)) with Assistive Technology Support Scre... |
| 56854 | Solaris XScreenSaver (xscreensaver(1)) PopUp Window Information Disclosure |
| 56325 | Solaris Auditing Extended File Attributes (fsattr(5)) Handling Local DoS |
| 55876 | Solaris NFSv4 Kernel Module Client System Panic Local DoS |
| 55875 | Solaris SCTP Packet Handling System Panic Remote DoS |
| 55519 | Solaris NFSv4 Server Kernel Module nfs_portmon Tunable Shared Resource Restri... |
| 55518 | Sun Java Web Console Unspecified XSS |
| 55330 | Solaris auditconfig RBAC Execution Profile Local Privilege Escalation |
| 54979 | Kerberos on Solaris Local NFS Mount/Share Credential Cache Management Unspeci... |
| 54138 | Solaris DTrace IOCTL Handlers Local DoS |
| 53628 | Solaris XScreenSaver PopUp Window Information Disclosure |
| 53139 | Solaris dircmp Race Condition Arbitrary File Overwrite |
| 52678 | Solaris keysock Kernel Module Unspecified Local DoS |
OpenVAS Exploits
| id | Description |
|---|---|
| 2009-10-13 | Name : Solaris Update for w and whodo 142286-01 File : nvt/gb_solaris_142286_01.nasl |
| 2009-10-13 | Name : Solaris Update for w and whodo 142285-01 File : nvt/gb_solaris_142285_01.nasl |
| 2009-10-13 | Name : Solaris Update for IKE 114435-15 File : nvt/gb_solaris_114435_15.nasl |
| 2009-10-13 | Name : Solaris Update for kernel 141415-10 File : nvt/gb_solaris_141415_10.nasl |
| 2009-10-13 | Name : Solaris Update for kernel 141414-10 File : nvt/gb_solaris_141414_10.nasl |
| 2009-10-13 | Name : Solaris Update for c2audit and auditconfig 140922-02 File : nvt/gb_solaris_140922_02.nasl |
| 2009-10-13 | Name : Solaris Update for c2audit and auditconfig 140921-02 File : nvt/gb_solaris_140921_02.nasl |
| 2009-09-23 | Name : Solaris Update for c2audit and auditconfig 140921-01 File : nvt/gb_solaris_140921_01.nasl |
| 2009-09-23 | Name : Solaris Update for fasttrap 141766-01 File : nvt/gb_solaris_141766_01.nasl |
| 2009-09-23 | Name : Solaris Update for fasttrap 141765-01 File : nvt/gb_solaris_141765_01.nasl |
| 2009-09-23 | Name : Solaris Update for klmmod 141734-03 File : nvt/gb_solaris_141734_03.nasl |
| 2009-09-23 | Name : Solaris Update for kernel 141415-04 File : nvt/gb_solaris_141415_04.nasl |
| 2009-09-23 | Name : Solaris Update for c2audit and auditconfig 140922-01 File : nvt/gb_solaris_140922_01.nasl |
| 2009-07-09 | Name : Sun Java Web Console Multiple XSS Vulnerabilities File : nvt/gb_sun_java_web_console_xss_vuln.nasl |
| 2009-06-03 | Name : Solaris Update for usr/bin/dircmp 138897-01 File : nvt/gb_solaris_138897_01.nasl |
| 2009-06-03 | Name : Solaris Update for usr/bin/dircmp 140838-01 File : nvt/gb_solaris_140838_01.nasl |
| 2009-06-03 | Name : Solaris Update for usr/bin/dircmp 140837-01 File : nvt/gb_solaris_140837_01.nasl |
| 2009-06-03 | Name : Solaris Update for ptsl 140427-01 File : nvt/gb_solaris_140427_01.nasl |
| 2009-06-03 | Name : Solaris Update for ptsl 140426-01 File : nvt/gb_solaris_140426_01.nasl |
| 2009-06-03 | Name : Solaris Update for Obsoleted by 139463-02 File : nvt/gb_solaris_139463_02.nasl |
| 2009-06-03 | Name : Solaris Update for Obsoleted by 139462-02 File : nvt/gb_solaris_139462_02.nasl |
| 2009-06-03 | Name : Solaris Update for edit, ex, vedit, vi and view 116479-02 File : nvt/gb_solaris_116479_02.nasl |
| 2009-06-03 | Name : Solaris Update for edit, ex, vedit, vi and view 113031-04 File : nvt/gb_solaris_113031_04.nasl |
| 2009-06-03 | Name : Solaris Update for logindmux, ptsl, ms, bufmod, llc1, kb, zs, zsh, ptem 1136... File : nvt/gb_solaris_113685_07.nasl |
| 2009-06-03 | Name : Solaris Update for logindmux/llc1/ptsl/bufmod/ptem 113686-06 File : nvt/gb_solaris_113686_06.nasl |
Information Assurance Vulnerability Management (IAVM)
| id | Description |
|---|---|
| 2009-A-0113 | Sun Solaris Remote Privilege Escalation Vulnerability Severity: Category I - VMSKEY: V0021928 |
| 2009-T-0040 | Sun Solaris Network File System Unauthorized Network Access Vulnerability Severity: Category II - VMSKEY: V0019716 |
| 2009-T-0008 | Sun Solaris IKE Packet Handling Security Vulnerability Severity: Category I - VMSKEY: V0018293 |
| 2009-T-0003 | Sun Solaris 10 IPv4 Forwarding Denial of Service Vulnerability Severity: Category II - VMSKEY: V0017995 |
| 2009-T-0001 | Sun Solaris X Inter Client Exchange Library (libICE) Denial of Service Vulner... Severity: Category I - VMSKEY: V0017981 |
| 2008-T-0043 | Multiple Sun Solaris snoop Vulnerabilities Severity: Category II - VMSKEY: V0017141 |
| 2008-T-0029 | Sun Solaris Unspecified Remote Denial of Service Vulnerability Severity: Category II - VMSKEY: V0016060 |
| 2008-T-0018 | Sun Solaris SCTP Denial of Service Vulnerabilities Severity: Category I - VMSKEY: V0016009 |
| 2008-T-0014 | Sun Solaris Self Encapsulated IP Packets Remote Denial of Service Vulnerability Severity: Category II - VMSKEY: V0015979 |
| 2008-T-0002 | Sun Solaris 10 NFS netgroups Remote Security Bypass Vulnerability Severity: Category I - VMSKEY: V0015601 |
Snort® IPS/IDS
| Date | Description |
|---|---|
| 2014-01-10 | IBM AIX and Oracle Solaris nfsd v4 nfs_portmon security bypass attempt RuleID : 20248 - Type : PROTOCOL-RPC - Revision : 4 |
Nessus® Vulnerability Scanner
| id | Description |
|---|---|
| 2015-04-02 | Name: The remote host is missing Sun security patch number 119060-45. File: solaris10_x86_119060_45.nasl - Type: ACT_GATHER_INFO |
| 2015-04-02 | Name: The remote host is missing Sun security patch number 119059-46. File: solaris10_119059_46.nasl - Type: ACT_GATHER_INFO |
| 2011-11-18 | Name: The remote web server has a URI redirection vulnerability. File: sun_java_web_console_uri_redirect.nasl - Type: ACT_GATHER_INFO |
| 2009-10-19 | Name: The remote host is missing Sun Security Patch number 126363-10 File: solaris10_126363.nasl - Type: ACT_GATHER_INFO |
| 2009-10-15 | Name: The remote host is missing Sun Security Patch number 141445-09 File: solaris10_x86_141445.nasl - Type: ACT_GATHER_INFO |
| 2009-10-15 | Name: The remote host is missing Sun Security Patch number 141444-09 File: solaris10_141444.nasl - Type: ACT_GATHER_INFO |
| 2009-07-02 | Name: The remote web application has multiple cross-site scripting vulnerabilities. File: sun_java_web_console_helpwindow_xss.nasl - Type: ACT_ATTACK |
| 2009-04-23 | Name: The remote host is missing Sun Security Patch number 138896-01 File: solaris9_138896.nasl - Type: ACT_GATHER_INFO |
| 2009-04-23 | Name: The remote host is missing Sun Security Patch number 140837-01 File: solaris8_140837.nasl - Type: ACT_GATHER_INFO |
| 2009-04-23 | Name: The remote host is missing Sun Security Patch number 138897-01 File: solaris9_x86_138897.nasl - Type: ACT_GATHER_INFO |
| 2009-04-23 | Name: The remote host is missing Sun Security Patch number 140838-01 File: solaris8_x86_140838.nasl - Type: ACT_GATHER_INFO |
| 2009-02-02 | Name: The remote host is missing Sun Security Patch number 140427-01 File: solaris9_x86_140427.nasl - Type: ACT_GATHER_INFO |
| 2009-02-02 | Name: The remote host is missing Sun Security Patch number 140426-01 File: solaris9_140426.nasl - Type: ACT_GATHER_INFO |
| 2009-01-19 | Name: The remote host is missing Sun Security Patch number 138578-01 File: solaris9_x86_138578.nasl - Type: ACT_GATHER_INFO |
| 2009-01-19 | Name: The remote host is missing Sun Security Patch number 138574-01 File: solaris9_x86_138574.nasl - Type: ACT_GATHER_INFO |
| 2009-01-19 | Name: The remote host is missing Sun Security Patch number 138577-01 File: solaris9_138577.nasl - Type: ACT_GATHER_INFO |
| 2008-09-17 | Name: The remote host is missing Sun Security Patch number 113031-04 File: solaris9_113031.nasl - Type: ACT_GATHER_INFO |
| 2008-09-17 | Name: The remote host is missing Sun Security Patch number 116479-02 File: solaris9_x86_116479.nasl - Type: ACT_GATHER_INFO |
| 2008-08-17 | Name: The remote host is missing Sun Security Patch number 108965-11 File: solaris8_x86_108965.nasl - Type: ACT_GATHER_INFO |
| 2008-08-17 | Name: The remote host is missing Sun Security Patch number 112915-06 File: solaris9_112915.nasl - Type: ACT_GATHER_INFO |
| 2008-08-17 | Name: The remote host is missing Sun Security Patch number 108964-11 File: solaris8_108964.nasl - Type: ACT_GATHER_INFO |
| 2008-08-17 | Name: The remote host is missing Sun Security Patch number 114262-05 File: solaris9_x86_114262.nasl - Type: ACT_GATHER_INFO |
| 2008-07-08 | Name: The remote host is missing Sun Security Patch number 137402-02 File: solaris9_137402.nasl - Type: ACT_GATHER_INFO |
| 2008-07-08 | Name: The remote host is missing Sun Security Patch number 137403-02 File: solaris9_x86_137403.nasl - Type: ACT_GATHER_INFO |
| 2008-05-17 | Name: The remote host is missing Sun Security Patch number 120831-06 File: solaris10_x86_120831.nasl - Type: ACT_GATHER_INFO |
