| # |
CVE ID
|
CWE ID
|
# of Exploits
|
Vulnerability Type(s)
|
Publish Date
|
Update Date
|
Score
|
Gained Access Level
|
Access
|
Complexity
|
Authentication
|
Conf.
|
Integ.
|
Avail.
|
|
1 |
CVE-2007-0503 |
|
|
Exec Code |
2007-01-25 |
2018-10-30 |
6.9 |
None |
Local |
Medium |
Not required |
Complete |
Complete |
Complete |
|
Unspecified vulnerability in kcms_calibrate in Sun Solaris 8 and 9 before 20071122 allows local users to execute arbitrary commands via unknown vectors. |
|
2 |
CVE-2007-3717 |
|
|
+Priv |
2007-07-12 |
2018-10-30 |
6.9 |
None |
Local |
Medium |
Not required |
Complete |
Complete |
Complete |
|
rcp on Sun Solaris 8, 9, and 10 before 20070710 does not properly call certain helper applications, which allows local users to gain privileges by creating files with certain names, possibly containing shell metacharacters or spaces, a similar issue to CVE-2006-0225. |
|
3 |
CVE-2012-3187 |
|
|
|
2012-10-17 |
2013-10-11 |
6.9 |
None |
Local |
Medium |
Not required |
Complete |
Complete |
Complete |
|
Unspecified vulnerability in Oracle Sun Solaris 10 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Kernel. |
|
4 |
CVE-2014-4225 |
|
|
|
2014-07-17 |
2018-10-09 |
6.9 |
None |
Local |
Medium |
Not required |
Complete |
Complete |
Complete |
|
Unspecified vulnerability in Oracle Sun Solaris 10 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Patch installation scripts. |
|
5 |
CVE-2006-3728 |
|
|
DoS |
2006-07-21 |
2018-10-30 |
6.8 |
None |
Remote |
Low |
??? |
None |
None |
Complete |
|
Unspecified vulnerability in the kernel in Solaris 10 with patch 118822-29 (118844-29 on x86) and without patch 118833-11 (118855-08) allows remote authenticated users to cause a denial of service via unspecified vectors that lead to "kernel data structure corruption" that can trigger a system panic, application failure, or "data corruption." |
|
6 |
CVE-2008-1095 |
264 |
|
DoS Bypass |
2008-02-29 |
2018-10-30 |
6.8 |
None |
Remote |
Low |
??? |
None |
None |
Complete |
|
Unspecified vulnerability in the Internet Protocol (IP) implementation in Sun Solaris 8, 9, and 10 allows remote attackers to bypass intended firewall policies or cause a denial of service (panic) via unknown vectors, possibly related to ICMP packets and IP fragment reassembly. |
|
7 |
CVE-2009-0873 |
264 |
|
Bypass |
2009-03-11 |
2018-10-30 |
6.8 |
None |
Remote |
Medium |
Not required |
Partial |
Partial |
Partial |
|
The NFS daemon (aka nfsd) in Sun Solaris 10 and OpenSolaris before snv_106, when NFSv3 is used, does not properly implement combinations of security modes, which allows remote attackers to bypass intended access restrictions and read or modify files, as demonstrated by a combination of the sec=sys and sec=krb5 security modes, related to modes that "override each other." |
|
8 |
CVE-2012-0100 |
|
|
|
2012-01-18 |
2018-01-06 |
6.8 |
None |
Local |
Low |
??? |
Complete |
Complete |
Complete |
|
Unspecified vulnerability in Oracle Solaris 9, 10, and 11 Express allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Kerberos. |
|
9 |
CVE-2014-6470 |
|
|
|
2014-10-15 |
2015-11-06 |
6.8 |
None |
Local |
Low |
??? |
Complete |
Complete |
Complete |
|
Unspecified vulnerability in Oracle Sun Solaris 11 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Archive Utility. |
|
10 |
CVE-2014-6529 |
|
|
|
2014-10-15 |
2014-11-19 |
6.8 |
None |
Local Network |
High |
Not required |
Complete |
Complete |
Complete |
|
Unspecified vulnerability in Oracle Sun Solaris 11 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to Hermon HCA PCIe driver. |
|
11 |
CVE-2006-5012 |
|
|
DoS |
2006-09-27 |
2018-10-30 |
6.6 |
None |
Local |
Low |
Not required |
None |
Complete |
Complete |
|
Unspecified vulnerability in Sun Solaris 8, 9, and 10 before 20060925 allows local users to cause a denial of service (disable syslog) and prevent security messages from being logged via unspecified vectors. |
|
12 |
CVE-2006-6494 |
|
|
Exec Code Dir. Trav. |
2006-12-13 |
2018-10-30 |
6.6 |
None |
Local |
Medium |
??? |
Complete |
Complete |
Complete |
|
Directory traversal vulnerability in ld.so.1 in Sun Solaris 8, 9, and 10 allows local users to execute arbitrary code via a .. (dot dot) sequence in the LANG environment variable that points to a locale file containing attacker-controlled format string specifiers. |
|
13 |
CVE-2006-6495 |
|
|
Exec Code Overflow |
2006-12-13 |
2018-10-30 |
6.6 |
None |
Local |
Medium |
??? |
Complete |
Complete |
Complete |
|
Stack-based buffer overflow in ld.so.1 in Sun Solaris 8, 9, and 10 allows local users to execute arbitrary code via large precision padding values in a format string specifier in the format parameter of the doprf function. NOTE: this issue normally does not cross privilege boundaries, except in cases of external introduction of malicious message files, or if it is leveraged with other vulnerabilities such as CVE-2006-6494. |
|
14 |
CVE-2008-1778 |
16 |
|
DoS |
2008-04-14 |
2018-10-30 |
6.6 |
None |
Local |
Low |
Not required |
None |
Complete |
Complete |
|
Unspecified vulnerability in the floating point context switch implementation in Sun Solaris 9 and 10 on x86 platforms might allow local users to cause a denial of service (application exit), corrupt data, or trigger incorrect calculations via unknown vectors. |
|
15 |
CVE-2012-1691 |
|
|
|
2012-05-03 |
2017-12-07 |
6.6 |
None |
Local |
Medium |
??? |
Complete |
Complete |
Complete |
|
Unspecified vulnerability in Oracle Sun Solaris 11 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Kernel/Privileges. |
|
16 |
CVE-2013-0399 |
|
|
|
2013-01-17 |
2017-09-19 |
6.6 |
None |
Local |
Medium |
??? |
Complete |
Complete |
Complete |
|
Unspecified vulnerability in Oracle Sun Solaris 9 and 10 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Utility/Umount. |
|
17 |
CVE-2013-0400 |
|
|
|
2013-01-17 |
2017-09-19 |
6.6 |
None |
Local |
Medium |
??? |
Complete |
Complete |
Complete |
|
Unspecified vulnerability in Oracle Sun Solaris 9 and 10 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Filesystem/cachefs. |
|
18 |
CVE-2014-6518 |
|
|
|
2015-01-21 |
2016-12-07 |
6.6 |
None |
Local |
Low |
Not required |
None |
Complete |
Complete |
|
Unspecified vulnerability in Oracle Solaris 10 and 11 allows local users to affect integrity and availability via vectors related to Unix File System (UFS). |
|
19 |
CVE-2011-0800 |
|
|
|
2011-04-20 |
2011-04-20 |
6.5 |
None |
Local |
Low |
??? |
Complete |
Complete |
Complete |
|
Unspecified vulnerability in the Solaris component in Oracle Solaris 8, 9, 10, and 11 Express allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Administration Utilities. |
|
20 |
CVE-2001-0421 |
|
|
|
2001-07-02 |
2018-10-30 |
6.4 |
None |
Remote |
Low |
Not required |
Partial |
None |
Partial |
|
FTP server in Solaris 8 and earlier allows local and remote attackers to cause a core dump in the root directory, possibly with world-readable permissions, by providing a valid username with an invalid password followed by a CWD ~ command, which could release sensitive information such as shadowed passwords, or fill the disk partition. |
|
21 |
CVE-2012-1694 |
|
|
|
2012-05-03 |
2017-12-07 |
6.4 |
None |
Remote |
Low |
Not required |
Partial |
Partial |
None |
|
Unspecified vulnerability in Oracle Sun Solaris 10 allows remote attackers to affect confidentiality and integrity, related to libsasl. |
|
22 |
CVE-2013-0405 |
|
|
|
2013-04-17 |
2017-09-19 |
6.4 |
None |
Remote |
Low |
Not required |
Partial |
Partial |
None |
|
Unspecified vulnerability in Oracle Sun Solaris 8, 9, 10, and 11 allows remote attackers to affect confidentiality and integrity via vectors related to NFS client mounts and IPv6. |
|
23 |
CVE-2013-3757 |
|
|
|
2013-07-17 |
2017-09-19 |
6.4 |
None |
Remote |
Low |
Not required |
None |
Partial |
Partial |
|
Unspecified vulnerability in Oracle Solaris 8, 9, 10, and 11 allows remote attackers to affect integrity and availability via vectors related to SMF/File Locking Services. |
|
24 |
CVE-1999-0164 |
|
|
|
1995-08-29 |
2008-09-09 |
6.2 |
None |
Local |
High |
Not required |
Complete |
Complete |
Complete |
|
A race condition in the Solaris ps command allows an attacker to overwrite critical files. |
|
25 |
CVE-1999-1388 |
|
|
|
1994-05-13 |
2008-09-05 |
6.2 |
None |
Local |
High |
Not required |
Complete |
Complete |
Complete |
|
passwd in SunOS 4.1.x allows local users to overwrite arbitrary files via a symlink attack and the -F command line argument. |
|
26 |
CVE-1999-1468 |
|
|
+Priv |
1991-10-22 |
2008-09-10 |
6.2 |
None |
Local |
High |
Not required |
Complete |
Complete |
Complete |
|
rdist in various UNIX systems uses popen to execute sendmail, which allows local users to gain root privileges by modifying the IFS (Internal Field Separator) variable. |
|
27 |
CVE-2001-0059 |
|
|
|
2001-02-12 |
2018-10-30 |
6.2 |
None |
Local |
High |
Not required |
Complete |
Complete |
Complete |
|
patchadd in Solaris allows local users to overwrite arbitrary files via a symlink attack. |
|
28 |
CVE-2012-0539 |
|
|
|
2012-05-03 |
2017-12-07 |
6.2 |
None |
Local |
High |
Not required |
Complete |
Complete |
Complete |
|
Unspecified vulnerability in Oracle Sun Solaris 8, 9, and 10 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to (1) bsmconv and (2) bsmunconv. |
|
29 |
CVE-2013-5834 |
|
|
|
2014-01-15 |
2017-08-29 |
6.2 |
None |
Local |
High |
Not required |
Complete |
Complete |
Complete |
|
Unspecified vulnerability in Oracle Solaris 8 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to ps. |
|
30 |
CVE-2013-0415 |
|
|
|
2013-01-17 |
2017-09-19 |
6.0 |
None |
Local |
High |
??? |
Complete |
Complete |
Complete |
|
Unspecified vulnerability in Oracle Sun Solaris 10 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to the Bind/Postinstall script for Bind package. |
|
31 |
CVE-2013-3786 |
|
|
|
2013-07-17 |
2017-09-19 |
6.0 |
None |
Local |
High |
??? |
Complete |
Complete |
Complete |
|
Unspecified vulnerability in Oracle Solaris 9, 10, and 11 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Kernel. |
|
32 |
CVE-2012-1683 |
|
|
|
2012-05-03 |
2017-12-07 |
5.9 |
None |
Local |
High |
??? |
Complete |
Complete |
Complete |
|
Unspecified vulnerability in Oracle Sun Solaris 8, 9, 10, and 11 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to gssd. |
|
33 |
CVE-2013-0411 |
|
|
|
2013-04-17 |
2017-09-19 |
5.9 |
None |
Local |
High |
??? |
Complete |
Complete |
Complete |
|
Unspecified vulnerability in Oracle Sun Solaris 8, 9, and 10 allows local users to affect confidentiality, integrity, and availability via vectors related to RBAC Configuration. |
|
34 |
CVE-2006-7140 |
|
|
|
2007-03-07 |
2018-10-30 |
5.8 |
None |
Remote |
Medium |
Not required |
None |
Partial |
Partial |
|
The libike library, as used by in.iked, elfsign, and kcfd in Sun Solaris 9 and 10, when using an RSA key with exponent 3, removes PKCS-1 padding before generating a hash, which allows remote attackers to forge a PKCS #1 v1.5 signature that is signed by that RSA key and prevents libike from correctly verifying X.509 and other certificates that use PKCS #1, a similar issue to CVE-2006-4339. |
|
35 |
CVE-2012-4294 |
119 |
|
Exec Code Overflow |
2012-08-16 |
2017-09-19 |
5.8 |
None |
Local Network |
Low |
Not required |
Partial |
Partial |
Partial |
|
Buffer overflow in the channelised_fill_sdh_g707_format function in epan/dissectors/packet-erf.c in the ERF dissector in Wireshark 1.8.x before 1.8.2 allows remote attackers to execute arbitrary code via a large speed (aka rate) value. |
|
36 |
CVE-2013-3813 |
|
|
|
2013-07-17 |
2017-09-19 |
5.8 |
None |
Remote |
Medium |
Not required |
Partial |
Partial |
None |
|
Unspecified vulnerability in Oracle Solaris 10 allows remote attackers to affect confidentiality and integrity via vectors related to Libraries/PAM-Unix. |
|
37 |
CVE-2011-3515 |
|
|
|
2011-10-18 |
2017-08-29 |
5.6 |
None |
Local |
Low |
Not required |
None |
Partial |
Complete |
|
Unspecified vulnerability in the Oracle Solaris 10 and 11 Express allows local users to affect integrity and availability via unknown vectors related to Process File System (procfs). |
|
38 |
CVE-2012-1687 |
|
|
|
2012-07-17 |
2017-08-29 |
5.6 |
None |
Local |
Low |
Not required |
None |
Partial |
Complete |
|
Unspecified vulnerability in Oracle Solaris 10 and 11 allows local users to affect integrity and availability, related to Logical Domains (LDOM). |
|
39 |
CVE-2012-3209 |
|
|
|
2012-10-17 |
2013-10-11 |
5.6 |
None |
Local |
Low |
Not required |
None |
Partial |
Complete |
|
Unspecified vulnerability in Oracle Sun Solaris 10 and 11, when running on SPARC, allows local users to affect integrity and availability via unknown vectors related to Logical Domain (LDOM). |
|
40 |
CVE-2011-0820 |
|
|
|
2011-04-20 |
2012-08-03 |
5.4 |
None |
Remote |
High |
Not required |
None |
None |
Complete |
|
Unspecified vulnerability in Oracle Solaris 10, and 11 Express allows remote attackers to affect availability via unknown vectors related to Kernel. |
|
41 |
CVE-2012-3127 |
|
|
|
2012-07-17 |
2017-08-29 |
5.4 |
None |
Remote |
High |
Not required |
None |
None |
Complete |
|
Unspecified vulnerability in Oracle Sun Solaris 10 allows remote attackers to affect availability, related to SCTP. |
|
42 |
CVE-2012-4298 |
189 |
|
Exec Code Overflow |
2012-08-16 |
2017-09-19 |
5.4 |
None |
Local Network |
Medium |
Not required |
Partial |
Partial |
Partial |
|
Integer signedness error in the vwr_read_rec_data_ethernet function in wiretap/vwr.c in the Ixia IxVeriWave file parser in Wireshark 1.8.x before 1.8.2 allows user-assisted remote attackers to execute arbitrary code via a crafted packet-trace file that triggers a buffer overflow. |
|
43 |
CVE-2011-2249 |
|
|
|
2011-07-20 |
2011-10-05 |
5.2 |
None |
Local Network |
Medium |
??? |
None |
None |
Complete |
|
Unspecified vulnerability in Oracle Solaris 8, 9, and 10 allows remote authenticated users to affect availability, related to TCP/IP. |
|
44 |
CVE-2012-3129 |
|
|
|
2012-07-17 |
2017-08-29 |
5.1 |
None |
Remote |
High |
Not required |
Partial |
Partial |
Partial |
|
Unspecified vulnerability in Oracle Sun Solaris 10 allows remote attackers to affect confidentiality, integrity, and availability, related to Gnome PDF viewer. |
|
45 |
CVE-1999-0010 |
|
|
DoS |
1998-04-08 |
2018-10-30 |
5.0 |
None |
Remote |
Low |
Not required |
None |
None |
Partial |
|
Denial of Service vulnerability in BIND 8 Releases via maliciously formatted DNS messages. |
|
46 |
CVE-1999-0015 |
|
|
DoS |
1997-12-16 |
2018-05-03 |
5.0 |
None |
Remote |
Low |
Not required |
None |
None |
Partial |
|
Teardrop IP denial of service. |
|
47 |
CVE-1999-0016 |
|
|
DoS |
1997-12-01 |
2008-09-09 |
5.0 |
None |
Remote |
Low |
Not required |
None |
None |
Partial |
|
Land IP denial of service. |
|
48 |
CVE-1999-0019 |
|
|
|
1996-04-24 |
2008-09-09 |
5.0 |
None |
Remote |
Low |
Not required |
None |
Partial |
None |
|
Delete or create a file via rpc.statd, due to invalid information. |
|
49 |
CVE-1999-0024 |
|
|
|
1997-08-13 |
2018-10-30 |
5.0 |
None |
Remote |
Low |
Not required |
None |
Partial |
None |
|
DNS cache poisoning via BIND, by predictable query IDs. |
|
50 |
CVE-1999-0054 |
|
|
DoS |
1998-06-10 |
2018-10-30 |
5.0 |
None |
Remote |
Low |
Not required |
None |
None |
Partial |
|
Sun's ftpd daemon can be subjected to a denial of service. |
