Filtered by vendor Sun
Subscribe
Total
1712 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2011-2296 | 1 Sun | 1 Sunos | 2011-10-05 | 4.9 MEDIUM | N/A |
| Unspecified vulnerability in Oracle Solaris 11 Express allows local users to affect availability, related to Kernel/SCTP. | |||||
| CVE-2011-2295 | 1 Sun | 1 Sunos | 2011-10-05 | 4.7 MEDIUM | N/A |
| Unspecified vulnerability in Oracle Solaris 8, 9, 10, and 11 Express allows local users to affect availability, related to Driver/USB. | |||||
| CVE-2011-2294 | 1 Sun | 1 Sunos | 2011-10-05 | 5.0 MEDIUM | N/A |
| Unspecified vulnerability in Oracle Solaris 10 and 11 Express allows remote attackers to affect availability, related to SSH. | |||||
| CVE-2011-2293 | 1 Sun | 1 Sunos | 2011-10-05 | 4.9 MEDIUM | N/A |
| Unspecified vulnerability in Oracle Solaris 11 Express allows local users to affect availability via unknown vectors related to Zones. | |||||
| CVE-2011-2291 | 1 Sun | 1 Sunos | 2011-10-05 | 1.7 LOW | N/A |
| Unspecified vulnerability in Oracle Solaris 10 allows local users to affect confidentiality via unknown vectors related to Trusted Extensions. | |||||
| CVE-2011-2290 | 1 Sun | 1 Sunos | 2011-10-05 | 4.9 MEDIUM | N/A |
| Unspecified vulnerability in Oracle Solaris 10, and 11 Express allows local users to affect availability via unknown vectors related to Kernel/sockfs. | |||||
| CVE-2011-2289 | 1 Sun | 1 Sunos | 2011-10-05 | 3.6 LOW | N/A |
| Unspecified vulnerability in Oracle Solaris 10 allows local users to affect integrity and availability via unknown vectors related to LiveUpgrade. | |||||
| CVE-2011-2287 | 1 Sun | 1 Sunos | 2011-10-05 | 7.8 HIGH | N/A |
| Unspecified vulnerability in Oracle Solaris 8, 9, 10, and 11 Express allows remote attackers to affect availability via unknown vectors related to fingerd. | |||||
| CVE-2011-2285 | 1 Sun | 1 Sunos | 2011-10-05 | 7.2 HIGH | N/A |
| Unspecified vulnerability in Oracle Solaris 10 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Installer. | |||||
| CVE-2011-2259 | 1 Sun | 1 Sunos | 2011-10-05 | 4.9 MEDIUM | N/A |
| Unspecified vulnerability in Oracle Solaris 8, 9, 10, and 11 Express allows local users to affect availability, related to UFS. | |||||
| CVE-2011-2258 | 1 Sun | 1 Sunos | 2011-10-05 | 4.6 MEDIUM | N/A |
| Unspecified vulnerability in Oracle Solaris 8, 9, 10, and 11 Express allows local users to affect confidentiality, integrity, and availability via unknown vectors related to rksh. | |||||
| CVE-2011-2249 | 1 Sun | 1 Sunos | 2011-10-05 | 5.2 MEDIUM | N/A |
| Unspecified vulnerability in Oracle Solaris 8, 9, and 10 allows remote authenticated users to affect availability, related to TCP/IP. | |||||
| CVE-2011-0807 | 2 Oracle, Sun | 2 Glassfish Server, Java System Application Server | 2011-09-22 | 10.0 HIGH | N/A |
| Unspecified vulnerability in Oracle Sun GlassFish Enterprise Server 2.1, 2.1.1, and 3.0.1, and Sun Java System Application Server 9.1, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Administration. | |||||
| CVE-2009-2445 | 1 Sun | 1 Java System Web Server | 2011-08-29 | 5.0 MEDIUM | N/A |
| Oracle iPlanet Web Server (formerly Sun Java System Web Server or Sun ONE Web Server) 6.1 before SP12, and 7.0 through Update 6, when running on Windows, allows remote attackers to read arbitrary JSP files via an alternate data stream syntax, as demonstrated by a .jsp::$DATA URI. | |||||
| CVE-2009-0171 | 1 Sun | 1 Sparc Enterprise Server | 2011-06-13 | 10.0 HIGH | N/A |
| The Sun SPARC Enterprise M4000 and M5000 Server, within a certain range of serial numbers, allows remote attackers to use the manufacturing root password, perform a root login to the eXtended System Control Facility Unit (aka XSCFU or Service Processor), and have unspecified other impact. | |||||
| CVE-2005-4045 | 1 Sun | 1 Java Communications Services Delegated Administrator | 2011-05-19 | 7.5 HIGH | N/A |
| Unspecified vulnerability in System Communications Services 6 Delegated Administrator 2005Q1 in Sun Java System Messaging Server 2005Q1 allows remote attackers to obtain the Top-Level Administrator (TLA) default password via unknown vectors, possibly involving configure_toplevel_admin.ldif. | |||||
| CVE-2010-0361 | 1 Sun | 1 Java System Web Server | 2011-04-28 | 10.0 HIGH | N/A |
| Stack-based buffer overflow in the WebDAV implementation in webservd in Sun Java System Web Server (aka SJWS) 7.0 Update 7 allows remote attackers to cause a denial of service (daemon crash) and possibly have unspecified other impact via a long URI in an HTTP OPTIONS request. | |||||
| CVE-2010-0360 | 1 Sun | 1 Java System Web Server | 2011-04-28 | 10.0 HIGH | N/A |
| Sun Java System Web Server (aka SJWS) 7.0 Update 7 allows remote attackers to overwrite memory locations in the heap, and discover the contents of memory locations, via a malformed HTTP TRACE request that includes a long URI and many empty headers, related to an "overflow." NOTE: this might overlap CVE-2010-0272 and CVE-2010-0273. | |||||
| CVE-2010-4785 | 4 Ibm, Linux, Microsoft and 1 more | 4 Tivoli Directory Server, Linux Kernel, Windows and 1 more | 2011-04-21 | 4.0 MEDIUM | N/A |
| The do_extendedOp function in ibmslapd in IBM Tivoli Directory Server (TDS) 6.0 before 6.0.0.62 (aka 6.0.0.8-TIV-ITDS-IF0004) on Linux, Solaris, and Windows allows remote authenticated users to cause a denial of service (ABEND) via a malformed LDAP extended operation that triggers certain comparisons involving the NULL operation OID. | |||||
| CVE-2011-0801 | 1 Sun | 1 Sunos | 2011-04-20 | 3.6 LOW | N/A |
| Unspecified vulnerability in Oracle Solaris 10 and 11 Express allows local users to affect confidentiality and integrity via unknown vectors related to cp. | |||||