This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Detail
Vendor Sun First view 2004-12-21
Product Solaris Last view 2010-01-14
Version 10.0 Type Os
Update *  
Edition sparc  
Language *  
Sofware Edition *  
Target Software *  
Target Hardware *  
Other *  
 
CPE Product cpe:2.3:o:sun:solaris

Activity : Overall

Related : CVE

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
  Date Alert Description
6.8 2010-01-14 CVE-2010-0310

Trusted Extensions in Sun Solaris 10 allows local users to gain privileges via vectors related to omission of unspecified libraries from software updates.

7.2 2009-11-03 CVE-2009-3851

Trusted Extensions in Sun Solaris 10 interferes with the operation of the xscreensaver-demo command for the XScreenSaver application, which makes it easier for physically proximate attackers to access an unattended workstation for which the intended screen locking did not occur, related to the "restart daemon."

6.8 2009-11-02 CVE-2009-3839

Unspecified vulnerability in the Solaris Trusted Extensions Policy configuration in Sun Solaris 10, and OpenSolaris snv_37 through snv_125, might allow remote attackers to execute arbitrary code by leveraging access to the X server.

4.4 2009-10-16 CVE-2009-3706

Unspecified vulnerability in the ZFS filesystem in Sun Solaris 10, and OpenSolaris snv_100 through snv_117, allows local users to bypass intended limitations of the file_chown_self privilege via certain uses of the chown system call.

4.9 2009-10-01 CVE-2009-3519

Multiple memory leaks in the IP module in the kernel in Sun Solaris 8 through 10, and OpenSolaris before snv_109, allow local users to cause a denial of service (memory consumption) via vectors related to (1) M_DATA, (2) M_PROTO, (3) M_PCPROTO, and (4) M_SIG STREAMS messages.

6.9 2009-09-29 CVE-2009-3468

Multiple unspecified vulnerabilities in Common Desktop Environment (CDE) in Sun Solaris 10, when Trusted Extensions is enabled, allow local users to execute arbitrary commands or bypass the Mandatory Access Control (MAC) policy via unknown vectors, related to a menu typo and the Style Manager.

7.1 2009-09-10 CVE-2009-3164

Unspecified vulnerability in the IPv6 networking stack in Sun Solaris 10, and OpenSolaris snv_01 through snv_82 and snv_111 through snv_122, when a Cassini GigaSwift Ethernet Adapter (aka CE) interface is used, allows remote attackers to cause a denial of service (panic) via vectors involving jumbo frames. NOTE: this issue exists because of an incomplete fix for CVE-2009-2136.

7.1 2009-08-28 CVE-2009-3000

The sockfs module in the kernel in Sun Solaris 10 and OpenSolaris snv_41 through snv_122, when Network Cache Accelerator (NCA) logging is enabled, allows remote attackers to cause a denial of service (panic) via unspecified web-server traffic that triggers a NULL pointer dereference in the nl7c_http_log function, related to "improper http response handling."

6.8 2009-08-03 CVE-2009-2652

Unspecified vulnerability in Solaris Trusted Extensions in Sun Solaris 10, and OpenSolaris snv_37 through snv_120, allows remote attackers to cause a denial of service (panic) via vectors involving the parsing of labeled packets.

4.9 2009-07-29 CVE-2009-2644

Race condition in the Solaris Auditing subsystem in Sun Solaris 9 and 10 and OpenSolaris before snv_121, when extended file attributes are used, allows local users to cause a denial of service (panic) via vectors related to "pathnames for invalid fds."

7.1 2009-07-02 CVE-2009-2297

Unspecified vulnerability in the udp subsystem in the kernel in Sun Solaris 10, and OpenSolaris snv_90 through snv_108, when Solaris Trusted Extensions is enabled, allows remote attackers to cause a denial of service (panic) via unspecified vectors involving the crgetlabel function, related to a "TX panic." NOTE: this issue exists because of a regression in earlier kernel patches.

4.9 2009-06-24 CVE-2009-2187

Multiple memory leaks in the (1) IP and (2) IPv6 multicast implementation in the kernel in Sun Solaris 10, and OpenSolaris snv_67 through snv_93, allow local users to cause a denial of service (memory consumption) via vectors related to the association of (a) DL_ENABMULTI_REQ and (b) DL_DISABMULTI_REQ messages with ARP messages.

7.8 2009-06-19 CVE-2009-2136

Unspecified vulnerability in the TCP/IP networking stack in Sun Solaris 10, and OpenSolaris snv_01 through snv_82 and snv_111 through snv_117, when a Cassini GigaSwift Ethernet Adapter (aka CE) interface is used, allows remote attackers to cause a denial of service (panic) via vectors involving jumbo frames.

4.9 2009-06-19 CVE-2009-2135

Multiple race conditions in the Solaris Event Port API in Sun Solaris 10 and OpenSolaris before snv_107 allow local users to cause a denial of service (panic) via unspecified vectors related to a race between the port_dissociate and close functions.

4.7 2009-03-17 CVE-2009-0925

Unspecified vulnerability in Sun Solaris 10 on SPARC sun4v systems, and OpenSolaris snv_47 through snv_85, allows local users to cause a denial of service (hang of UFS filesystem write) via unknown vectors related to the (1) ufs_getpage and (2) ufs_putapage routines, aka CR 6425723.

4.7 2009-03-17 CVE-2009-0924

Unspecified vulnerability in Sun OpenSolaris snv_39 through snv_45, when running in 64-bit mode on x86 architectures, allows local users to cause a denial of service (hang of UFS filesystem write) via unknown vectors related to the (1) ufs_getpage and (2) ufs_putapage routines, aka CR 6442712.

7.8 2009-03-17 CVE-2009-0923

Unspecified vulnerability in Kerberos Incremental Propagation in Solaris 10 and OpenSolaris snv_01 through snv_110 allows remote attackers to cause a denial of service (loss of incremental propagation requests to slave KDC servers) via unknown vectors related to the master Key Distribution Center (KDC) server.

4.7 2009-03-10 CVE-2009-0870

The NFSv4 Server module in the kernel in Sun Solaris 10, and OpenSolaris before snv_111, allow local users to cause a denial of service (infinite loop and system hang) by accessing an hsfs filesystem that is shared through NFSv4, related to the rfs4_op_readdir function.

4.7 2009-01-16 CVE-2009-0167

Unspecified vulnerability in lpadmin in Sun Solaris 10 and OpenSolaris snv_61 through snv_106 allows local users to cause a denial of service via unspecified vectors, related to enumeration of "wrong printers," aka a "Temporary file vulnerability."

4.6 2008-12-22 CVE-2008-5699

The name service cache daemon (nscd) in Sun Solaris 10 and OpenSolaris snv_50 through snv_104 does not properly check permissions, which allows local users to gain privileges and obtain sensitive information via unspecified vectors.

7.2 2008-12-19 CVE-2008-5689

tun in IP Tunnel in Solaris 10 and OpenSolaris snv_01 through snv_76 allows local users to cause a denial of service (panic) and possibly execute arbitrary code via a crafted SIOCGTUNPARAM IOCTL request, which triggers a NULL pointer dereference.

7.8 2008-12-09 CVE-2008-5410

The PK11_SESSION cache in the OpenSSL PKCS#11 engine in Sun Solaris 10 does not maintain reference counts for operations with asymmetric keys, which allows context-dependent attackers to cause a denial of service (failed cryptographic operations) via unspecified vectors, related to the (1) RSA_sign and (2) RSA_verify functions.

4.7 2008-02-25 CVE-2008-0933

Multiple race conditions in the CPU Performance Counters (cpc) subsystem in the kernel in Sun Solaris 10 allow local users to cause a denial of service (panic) via unspecified vectors related to kcpc_unbind and kcpc_restore.

7.2 2008-01-11 CVE-2008-0242

Unspecified vulnerability in libdevinfo in Sun Solaris 10 allows local users to access files and gain privileges via unknown vectors, related to login device permissions.

7.6 2007-11-29 CVE-2007-6180

Race condition in the Remote Procedure Call kernel module (rpcmod) in Sun Solaris 8 through 10 allows local users to cause a denial of service (NULL dereference and panic) via unspecified vectors.

CWE : Common Weakness Enumeration

%idName
32% (8) CWE-399 Resource Management Errors
24% (6) CWE-362 Race Condition
16% (4) CWE-264 Permissions, Privileges, and Access Controls
12% (3) CWE-20 Improper Input Validation
4% (1) CWE-310 Cryptographic Issues
4% (1) CWE-200 Information Exposure
4% (1) CWE-119 Failure to Constrain Operations within the Bounds of a Memory Buffer
4% (1) CWE-94 Failure to Control Generation of Code ('Code Injection')

CAPEC : Common Attack Pattern Enumeration & Classification

id Name
CAPEC-26 Leveraging Race Conditions
CAPEC-27 Leveraging Race Conditions via Symbolic Links
CAPEC-29 Leveraging Time-of-Check and Time-of-Use (TOCTOU) Race Conditions
CAPEC-38 Leveraging/Manipulating Configuration File Search Paths
CAPEC-41 Using Meta-characters in E-mail Headers to Inject Malicious Payloads
CAPEC-88 OS Command Injection
CAPEC-133 Try All Common Application Switches and Options

SAINT Exploits

Description Link
Solaris telnetd authentication bypass More info here

Open Source Vulnerability Database (OSVDB)

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
id Description
61660 Solaris Trusted Extensions Library Installation Weakness Local Privilege Esca...
60995 Solaris in.iked ISAKMP Protocol Unspecified Malformed Input Remote DoS (PROTOS)
59703 Solaris Trusted Extensions XScreenSaver xscreensaver-demo Command Restart Dae...
59354 Solaris Trusted Extensions Policy Unspecified Remote Bypass
59049 ZFS Filesystem on Solaris file_chown_self Privilege Local Restriction Bypass
58449 Solaris Kernel IP Module Unspecified Local DoS
58319 Solaris Trusted Extensions Common Desktop Environment (CDE) Unspecified Local...
57823 Solaris IPv6 Networking Stack Cassini Gigabit-Ethernet Device Driver (ce(7D))...
57457 Solaris sockfs Kernel Module Unspecified HTTP Requests Remote DoS
56682 Solaris Trusted Extensions Labeled Packet Handling Remote DoS
56607 Solaris Auditing Subsystem Extended File Attributes Race Condition Local DoS
55549 Solaris Kernel udp(7p) Subsystem Trusted Extensions crgetlabel Function Unspe...
55299 Solaris IP Multicast Reception Memory Exhaustion Local DoS
55233 Solaris TCP/IP Networking Stack Cassini Gigabit-Ethernet Device Driver (ce(7D...
55232 Solaris Event Port API Unspecified Race Condition Local DoS (6790056)
55231 Solaris Event Port API Unspecified Race Condition Local DoS (6736713)
52974 OpenSolaris 64-bit UFS Filesystem Functionality ufs_getpage / ufs_putapage Ro...
52973 Solaris UFS Filesystem Functionality ufs_getpage / ufs_putapage Routines Unsp...
52971 Solaris Kerberos Incremental Propagation Master Key Distribution Center (KDC)...
52535 Solaris lpadmin Print Utility Unspecified Local DoS
52507 Solaris NFSv4 Server Kernel Module hsfs(7FS) File System Handling Unspecified...
50934 Solaris Name Service Cache Daemon (nscd(1M)) Unspecified Local Privilege Esca...
50933 Solaris IP Tunnel Parameter Processing (tun(7M)) SIOCGTUNPARAM IOCTL Local Pr...
50614 Solaris OpenSSL PKCS#11 Corrupted Session Cache DoS
42017 Solaris Kernel CPU Performance Counters (cpc(3CPC)) Sub-system Race Condition...

ExploitDB Exploits

id Description
28789 Sun Solaris Netscape Portable Runtime API 4.6.1 Local Privilege Escalation Vu...
28788 Sun Solaris Netscape Portable Runtime API 4.6.1 Local Privilege Escalation Vu...
25389 Multiple Vendor ICMP Message Handling DoS
25388 Multiple Vendor ICMP Implementation Malformed Path MTU DoS
25387 Multiple Vendor ICMP Implementation Spoofed Source Quench Packet DoS
4601 Ubuntu 6.06 DHCPd bug Remote Denial of Service Exploit
2641 Solaris 10 libnspr - constructor Local Root Exploit
2569 Solaris 10 libnspr - LD_PRELOAD Arbitrary File Creation Local Root Exploit
2543 Solaris 10 (libnspr) - Arbitrary File Creation Local Root Exploit
2360 X11R6 <= 6.4 XKEYBOARD - Local Buffer Overflow Exploit (solaris/sparc)
2241 Solaris 10 sysinfo(2) - Local Kernel Memory Disclosure Exploit
948 Multiple OS (Win32/Aix/Cisco) - Crafted ICMP Messages DoS Exploit

OpenVAS Exploits

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
id Description
2011-11-21 Name : Microsoft Windows Internet Protocol Validation Remote Code Execution Vulnerab...
File : nvt/secpod_ms_windows_ip_validation_code_exec_vuln.nasl
2009-10-13 Name : Solaris Update for kernel 141414-10
File : nvt/gb_solaris_141414_10.nasl
2009-10-13 Name : Solaris Update for CDE 1.6 139620-01
File : nvt/gb_solaris_139620_01.nasl
2009-10-13 Name : Solaris Update for in.dhcpd libresolv and BIND9 114265-19
File : nvt/gb_solaris_114265_19.nasl
2009-10-13 Name : Solaris Update for in.dhcpd libresolv and BIND9 112837-20
File : nvt/gb_solaris_112837_20.nasl
2009-09-23 Name : Solaris Update for kernel 141414-02
File : nvt/gb_solaris_141414_02.nasl
2009-06-03 Name : Solaris Update for in.dhcpd libresolv and BIND9 114265-17
File : nvt/gb_solaris_114265_17.nasl
2009-06-03 Name : Solaris Update for sdtimage 114220-11
File : nvt/gb_solaris_114220_11.nasl
2009-06-03 Name : Solaris Update for format 114423-07
File : nvt/gb_solaris_114423_07.nasl
2009-06-03 Name : Solaris Update for hsfs 116047-03
File : nvt/gb_solaris_116047_03.nasl
2009-06-03 Name : Solaris Update for /usr/sadm/lib/smc/lib/preload/jsdk21.jar 116807-02
File : nvt/gb_solaris_116807_02.nasl
2009-06-03 Name : Solaris Update for /usr/sadm/lib/smc/lib/preload/jsdk21.jar 116808-02
File : nvt/gb_solaris_116808_02.nasl
2009-06-03 Name : Solaris Update for Xview 119902-01
File : nvt/gb_solaris_119902_01.nasl
2009-06-03 Name : Solaris Update for rexec 120329-02
File : nvt/gb_solaris_120329_02.nasl
2009-06-03 Name : Solaris Update for rexec 120330-02
File : nvt/gb_solaris_120330_02.nasl
2009-06-03 Name : Solaris Update for hsfs 121995-01
File : nvt/gb_solaris_121995_01.nasl
2009-06-03 Name : Solaris Update for librpcsvc 123396-01
File : nvt/gb_solaris_123396_01.nasl
2009-06-03 Name : Solaris Update for librpcsvc 123397-01
File : nvt/gb_solaris_123397_01.nasl
2009-06-03 Name : Solaris Update for librpcsvc 127548-01
File : nvt/gb_solaris_127548_01.nasl
2009-06-03 Name : Solaris Update for librpcsvc 127549-01
File : nvt/gb_solaris_127549_01.nasl
2009-06-03 Name : Solaris Update for usr/lib/inet/in.dhcpd 138876-01
File : nvt/gb_solaris_138876_01.nasl
2009-06-03 Name : Solaris Update for usr/lib/inet/in.dhcpd 138877-01
File : nvt/gb_solaris_138877_01.nasl
2009-06-03 Name : Solaris Update for CDE 1.5 114219-11
File : nvt/gb_solaris_114219_11.nasl
2009-06-03 Name : Solaris Update for dhcp server and admin 109077-21
File : nvt/gb_solaris_109077_21.nasl
2009-06-03 Name : Solaris Update for dhcp server and admin 109078-21
File : nvt/gb_solaris_109078_21.nasl

Information Assurance Vulnerability Management (IAVM)

id Description
2010-A-0013 Sun Solaris Trusted Extensions Missing Libraries Local Privilege Escalation V...
Severity: Category I - VMSKEY: V0022381
2009-A-0113 Sun Solaris Remote Privilege Escalation Vulnerability
Severity: Category I - VMSKEY: V0021928
2009-A-0085 Multiple Vulnerabilities in Solaris Trusted Extensions Common Desktop Environ...
Severity: Category I - VMSKEY: V0021628
2009-T-0047 Sun Solaris Kernel Denial of Service Vulnerability
Severity: Category I - VMSKEY: V0019908
2008-T-0066 Sun Solaris Denial of Service Vulnerability
Severity: Category I - VMSKEY: V0017916
2007-B-0006 Sun Solaris Telnet Remote Authentication Bypass Vulnerability
Severity: Category I - VMSKEY: V0013607
2005-T-0043 Sun Solaris Management Console HTTP TRACE Information Disclosure Vulnerability
Severity: Category II - VMSKEY: V0011706

Snort® IPS/IDS

Date Description
2014-01-10 Source Quench
RuleID : 477 - Type : ICMP - Revision : 6
2017-08-29 Sun Solaris dhcpd malformed bootp denial of service attempt
RuleID : 43752 - Type : SERVER-OTHER - Revision : 2
2014-01-10 Oracle Solaris DHCP Client Arbitrary Code Execution attempt
RuleID : 17433 - Type : OS-SOLARIS - Revision : 13
2014-01-10 Oracle Solaris printd Daemon Arbitrary File Deletion attempt
RuleID : 17353 - Type : OS-SOLARIS - Revision : 12
2014-01-10 Oracle Solaris printd arbitrary file deletion vulnerability
RuleID : 12080 - Type : OS-SOLARIS - Revision : 10
2014-01-10 Oracle Solaris lpd unlink file attempt
RuleID : 10418 - Type : OS-SOLARIS - Revision : 8
2014-01-10 Oracle Solaris login environment variable authentication bypass attempt
RuleID : 10136 - Type : OS-SOLARIS - Revision : 11

Nessus® Vulnerability Scanner

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
id Description
2017-05-08 Name: The remote device is missing a vendor-supplied security patch.
File: f5_bigip_SOL23440942.nasl - Type: ACT_GATHER_INFO
2015-09-18 Name: The remote device is missing a vendor-supplied security patch.
File: f5_bigip_SOL4583.nasl - Type: ACT_GATHER_INFO
2015-04-02 Name: The remote host is missing Sun security patch number 119059-46.
File: solaris10_119059_46.nasl - Type: ACT_GATHER_INFO
2015-04-02 Name: The remote host is missing Sun security patch number 119060-45.
File: solaris10_x86_119060_45.nasl - Type: ACT_GATHER_INFO
2013-07-03 Name: The remote host is missing Sun Security Patch number 143502-01
File: solaris10_143502.nasl - Type: ACT_GATHER_INFO
2013-07-03 Name: The remote host is missing Sun Security Patch number 143503-01
File: solaris10_x86_143503.nasl - Type: ACT_GATHER_INFO
2010-09-01 Name: The remote device is missing a vendor-supplied security patch
File: cisco-sa-20050412-icmp.nasl - Type: ACT_GATHER_INFO
2009-10-19 Name: The remote host is missing Sun Security Patch number 126363-10
File: solaris10_126363.nasl - Type: ACT_GATHER_INFO
2009-10-15 Name: The remote host is missing Sun Security Patch number 141444-09
File: solaris10_141444.nasl - Type: ACT_GATHER_INFO
2009-10-15 Name: The remote host is missing Sun Security Patch number 141445-09
File: solaris10_x86_141445.nasl - Type: ACT_GATHER_INFO
2009-09-23 Name: The remote host is missing Sun Security Patch number 126365-16
File: solaris10_126365.nasl - Type: ACT_GATHER_INFO
2009-09-23 Name: The remote host is missing Sun Security Patch number 139620-01
File: solaris10_139620.nasl - Type: ACT_GATHER_INFO
2009-09-23 Name: The remote host is missing Sun Security Patch number 126366-16
File: solaris10_x86_126366.nasl - Type: ACT_GATHER_INFO
2009-09-23 Name: The remote host is missing Sun Security Patch number 139621-01
File: solaris10_x86_139621.nasl - Type: ACT_GATHER_INFO
2008-01-27 Name: The remote Fedora host is missing a security update.
File: fedora_2008-0930.nasl - Type: ACT_GATHER_INFO
2008-01-27 Name: The remote Fedora host is missing a security update.
File: fedora_2008-0956.nasl - Type: ACT_GATHER_INFO
2008-01-15 Name: The remote host is prone to a denial of service attack.
File: solaris10_icmp_handling_dos.nasl - Type: ACT_KILL_HOST
2007-11-10 Name: The remote Ubuntu host is missing a security-related patch.
File: ubuntu_USN-364-1.nasl - Type: ACT_GATHER_INFO
2007-11-10 Name: The remote Ubuntu host is missing one or more security-related patches.
File: ubuntu_USN-531-1.nasl - Type: ACT_GATHER_INFO
2007-11-10 Name: The remote Ubuntu host is missing one or more security-related patches.
File: ubuntu_USN-531-2.nasl - Type: ACT_GATHER_INFO
2007-11-06 Name: The remote Fedora host is missing a security update.
File: fedora_2007-1409.nasl - Type: ACT_GATHER_INFO
2007-10-25 Name: The remote Red Hat host is missing a security update.
File: redhat-RHSA-2007-0970.nasl - Type: ACT_GATHER_INFO
2007-10-19 Name: The remote Debian host is missing a security-related update.
File: debian_DSA-1388.nasl - Type: ACT_GATHER_INFO
2007-10-17 Name: The remote host is missing Sun Security Patch number 127548-01
File: solaris8_127548.nasl - Type: ACT_GATHER_INFO
2007-10-17 Name: The remote host is missing Sun Security Patch number 127549-01
File: solaris8_x86_127549.nasl - Type: ACT_GATHER_INFO