U.S. flag   An official website of the United States government
Dot gov

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Https

Secure .gov websites use HTTPS
A lock (Dot gov) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.

Search Results (Refine Search)

Search Parameters:
  • CPE Product Version: cpe:/o:sun:sunos:5.11
There are 127 matching records.
Displaying matches 121 through 127.
Vuln ID Summary CVSS Severity
CVE-2010-4457

Unspecified vulnerability in Oracle Solaris 11 Express allows remote attackers to affect availability, related to SMB and CIFS.

Published: January 19, 2011; 12:00:02 PM -0500
V3.x:(not available)
V2.0: 7.8 HIGH
CVE-2010-4446

Unspecified vulnerability in Oracle Solaris 11 Express allows local users to affect availability via unknown vectors related to RDS and Kernel/InfiniBand.

Published: January 19, 2011; 12:00:02 PM -0500
V3.x:(not available)
V2.0: 4.6 MEDIUM
CVE-2010-4443

Unspecified vulnerability in Oracle Solaris 10 and 11 Express allows local users to affect availability, related to Kernel/NFS.

Published: January 19, 2011; 12:00:02 PM -0500
V3.x:(not available)
V2.0: 4.4 MEDIUM
CVE-2010-4442

Unspecified vulnerability in Oracle Solaris 10 and 11 Express allows local users to affect availability via unknown vectors related to the Kernel.

Published: January 19, 2011; 12:00:02 PM -0500
V3.x:(not available)
V2.0: 4.4 MEDIUM
CVE-2010-4440

Unspecified vulnerability in Oracle 10 and 11 Express allows local users to affect availability via unknown vectors related to the Kernel.

Published: January 19, 2011; 12:00:02 PM -0500
V3.x:(not available)
V2.0: 4.4 MEDIUM
CVE-2010-2632

Unspecified vulnerability in the FTP Server in Oracle Solaris 8, 9, 10, and 11 Express allows remote attackers to affect availability. NOTE: the previous information was obtained from the January 2011 CPU. Oracle has not commented on claims from a reliable researcher that this is an issue in the glob implementation in libc that allows remote authenticated users to cause a denial of service (CPU and memory consumption) via crafted glob expressions that do not match any pathnames.

Published: January 19, 2011; 11:00:02 AM -0500
V3.x:(not available)
V2.0: 7.8 HIGH
CVE-2007-0882

Argument injection vulnerability in the telnet daemon (in.telnetd) in Solaris 10 and 11 (SunOS 5.10 and 5.11) misinterprets certain client "-f" sequences as valid requests for the login program to skip authentication, which allows remote attackers to log into certain accounts, as demonstrated by the bin account.

Published: February 12, 2007; 3:28:00 PM -0500
V3.x:(not available)
V2.0: 10.0 HIGH