Filtered by vendor Sun
Subscriptions
Total
1712 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2006-3825 | 1 Sun | 1 Solaris | 2025-04-03 | N/A |
| The IPv4 implementation in Sun Solaris 10 before 20060721 allows local users to select routes that differ from the routing table, possibly facilitating firewall bypass or unauthorized network communication. | ||||
| CVE-1999-0188 | 1 Sun | 2 Solaris, Sunos | 2025-04-03 | N/A |
| The passwd command in Solaris can be subjected to a denial of service. | ||||
| CVE-1999-0189 | 1 Sun | 2 Solaris, Sunos | 2025-04-03 | N/A |
| Solaris rpcbind listens on a high numbered UDP port, which may not be filtered since the standard port number is 111. | ||||
| CVE-1999-0210 | 1 Sun | 2 Solaris, Sunos | 2025-04-03 | N/A |
| Automount daemon automountd allows local or remote users to gain privileges via shell metacharacters. | ||||
| CVE-1999-0211 | 1 Sun | 1 Sunos | 2025-04-03 | N/A |
| Extra long export lists over 256 characters in some mount daemons allows NFS directories to be mounted by anyone. | ||||
| CVE-1999-0214 | 1 Sun | 1 Sunos | 2025-04-03 | N/A |
| Denial of service by sending forged ICMP unreachable packets. | ||||
| CVE-1999-0217 | 1 Sun | 1 Sunos | 2025-04-03 | N/A |
| Malicious option settings in UDP packets could force a reboot in SunOS 4.1.3 systems. | ||||
| CVE-1999-0241 | 3 Sgi, Sun, Xfree86 Project | 4 Irix, Solaris, Sunos and 1 more | 2025-04-03 | N/A |
| Guessable magic cookies in X Windows allows remote attackers to execute commands, e.g. through xterm. | ||||
| CVE-1999-0263 | 1 Sun | 1 Sunos | 2025-04-03 | N/A |
| Solaris SUNWadmap can be exploited to obtain root access. | ||||
| CVE-2006-0901 | 1 Sun | 2 Solaris, Sunos | 2025-04-03 | N/A |
| Unspecified vulnerability in the hsfs filesystem in Solaris 8, 9, and 10 allows unspecified attackers to cause a denial of service (panic) or execute arbitrary code. | ||||
| CVE-2006-4439 | 1 Sun | 1 Solaris | 2025-04-03 | N/A |
| pkgadd in Sun Solaris 10 before 20060825 installs files with insecure file and directory permissions (755 or 777) if the pkgmap file contains a "?" (question mark) in the mode field, which allows local users to modify arbitrary files or directories, a different vulnerability than CVE-2002-1871. | ||||
| CVE-2006-4117 | 1 Sun | 1 Solaris | 2025-04-03 | N/A |
| The squeue_drain function in Sun Solaris 10, possibly only when run on CMT processors, allows remote attackers to cause a denial of service ("bad trap" and system panic) by opening and closing a large number of TCP connections ("heavy TCP/IP loads"). NOTE: the original report specifies the function name as "drain_squeue," but this is likely incorrect. | ||||
| CVE-2004-2758 | 1 Sun | 1 Sunforum | 2025-04-03 | N/A |
| Multiple unspecified vulnerabilities in the H.323 protocol implementation for Sun SunForum 3.2 and 3D 1.0 allow remote attackers to cause a denial of service (segmentation fault and process crash), as demonstrated by the NISCC/OUSPG PROTOS test suite for the H.225 protocol. | ||||
| CVE-1999-0277 | 1 Sun | 1 Sunos | 2025-04-03 | N/A |
| The WorkMan program can be used to overwrite any file to get root access. | ||||
| CVE-1999-0295 | 1 Sun | 2 Solaris, Sunos | 2025-04-03 | N/A |
| Solaris sysdef command allows local users to read kernel memory, potentially leading to root privileges. | ||||
| CVE-1999-0296 | 1 Sun | 2 Solaris, Sunos | 2025-04-03 | N/A |
| Solaris volrmmount program allows attackers to read any file. | ||||
| CVE-1999-0300 | 1 Sun | 2 Solaris, Sunos | 2025-04-03 | N/A |
| nis_cachemgr for Solaris NIS+ allows attackers to add malicious NIS+ servers. | ||||
| CVE-1999-0302 | 1 Sun | 2 Solaris, Sunos | 2025-04-03 | N/A |
| SunOS/Solaris FTP clients can be forced to execute arbitrary commands from a malicious FTP server. | ||||
| CVE-2005-0109 | 5 Freebsd, Redhat, Sco and 2 more | 9 Freebsd, Enterprise Linux, Enterprise Linux Desktop and 6 more | 2025-04-03 | N/A |
| Hyper-Threading technology, as used in FreeBSD and other operating systems that are run on Intel Pentium and other processors, allows local users to use a malicious thread to create covert channels, monitor the execution of other threads, and obtain sensitive information such as cryptographic keys, via a timing attack on memory cache misses. | ||||
| CVE-2006-4353 | 1 Sun | 1 Java System Content Delivery Server | 2025-04-03 | N/A |
| Unspecified vulnerability in Sun Java System Content Delivery Server 4.0, 4.1, and 5.0 allows local and remote attackers to read data from arbitrary files via unspecified vectors. | ||||