Sun Alert Archive and Mappings for Legacy SunSolve Document ID Numbers

Sun Microsystems published security advisories to alert users about vulnerabilities affecting Sun products. These advisories were known as Security Sun Alerts and were published on SunSolve Support portal. Security Sun Alerts were available free of cost to all customers and users of Sun's products. Security vulnerabilities are now covered by the Oracle Security Alert process. Details can be found on the Critical Patch Updates and Security Alerts site.

All security Sun Alerts are now accessible to customers through My Oracle Support (MOS) website. The Document ID numbers under Oracle support portal are new and different from the document ID numbers published under SunSolve. SunSolve itself had transitioned to different knowledge management systems resulting in multiple legacy document IDs for the same Sun Alert. We are providing an archival index of all the Security Sun Alerts and mappings for previously used ID numbers as a reference.

  • [1] MOS ID: Document ID numbers of the form 10XXXXX.1 are used on My Oracle Support.
    Click the link in first column to access a document on MOS.
  • [2] SunSolve ID: Sun Alert ID numbers of the form 2XXXXX were previously published on SunSolve using URLs:
    http://sunsolve.sun.com/search/document.do?assetkey=1-66-XXXXXX-1.
    Click the link in second column to access the copy of a document.
  • [3] Old ID: Sun Alert ID numbers of the form 1XXXXX were previously published on SunSolve using URLs:
    http://sunsolve.sun.com/search/document.do?assetkey=1-26-XXXXXX-1
  • [4] Older ID: Sun Alert ID numbers of the form 5XXXX or 4XXXX were previously published on SunSolve using URLs:
    http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert/5XXXX
MOS ID[1]SunSolve ID[2]Old ID[3]Older ID[4]Last UpdatedTitle
1000001.1200002102479 01-Aug-2006Cross-Site Scripting Vulnerability in Sun ONE and Sun Java System Application Server
1000007.12000081014795754005-Nov-2006CDE dtsession Patches 113240-07, 113240-08, 109354-21, and 109354-22 WITHDRAWN, May Cause Lockscreen to Fail or Hang
1000010.1200013102278 06-Nov-2006Security Vulnerability in the SunPlex Manager Software Delivered With Sun Cluster 3.1 4/04
1000012.1200015102090 06-Nov-2006Solaris 10 Sun Update Connection Web Proxy Password Disclosure Vulnerability
1000013.1200016102148 06-Nov-2006SecurityVulnerabilities in Sun StorEdge Enterprise Backup Software (EBS)
1000015.1200018101949 16-Oct-2005Security Vulnerability in Solaris 10 Allows Unprivileged User Visibility of Process Working Directories
1000016.1200019102164 13-May-2010Cross Site Scripting Vulnerability in Sun ONE and Sun Java System Applications
1000019.1200022101739 15-Jun-2006Simultaneous Multi-Threading Processors May Leak Information
1000021.12000261011735043901-Oct-2010CVS Versions on all Sun Cobalt Legacy Products and Sun Linux 5.0.3 are Vulnerable to a "Double Free" Vulnerability
1000025.12000301011414913113-Apr-2003Security Vulnerability Involving the priocntl(2) System Call
1000027.1200032103179 06-Jul-2010Security Vulnerabilities in the Apache 1.3 and 2.0 Web Server Daemon and "mod_status" Module May Lead to Cross Site Scripting (XSS) or Denial of Service (DoS).
1000028.1200033103171 05-Jan-2008Security Vulnerability in FreeType 2 Font Engine May Allow Privilege Escalation Due to Heap Overflow
1000029.12000341012585510119-Jan-2010An Untrusted Applet may Access Restricted Resources
1000030.12000351012575510019-Jan-2010An Untrusted Applet May Access Information From a Trusted Applet
1000032.1200040103112 21-Oct-2007Vulnerability in Java Runtime Environment Virtual Machine May Allow Untrusted Application or Applet to Elevate Privileges
1000033.1200041103078 04-Sep-2008Security Vulnerabilities in Java Runtime Environment May Allow Network Access Restrictions to be Circumvented
1000037.1200045103088 08-Oct-2007Security Vulnerability in the Solaris 10 Virtual File System (VFS) may Lead to a Denial of Service (DoS) Condition
1000039.1200051102942 29-Oct-2007Sun Fire X2100 M2/X2200 M2 ELOM is Vulnerable to Unauthorized Use as a Proxy For Sending Unsolicited Bulk E-mail (Spam)
1000041.1200054102992 25-Oct-2007Security Vulnerability in Processing XSLT Stylesheets Affects Sun Java System Application Server and Web Server
1000045.1200060102919 13-Jun-2007Security Vulnerability in IPv6 Implementation (ip6(7p)) Related to the Handling of IPsec Packets may Lead to a System Panic, Resulting in a Denial of Service (DoS)
1000046.1200061102969 17-Jun-2007Security Vulnerability in Solaris 10 BIND DNSSEC May Cause a Denial of Service
1000047.1200062102521 03-Jun-2007Security Vulnerability in Sun Java System Application Server and Sun Java System Web Server May Allow a Remote Unprivileged User to Read Certain Files
1000048.1200064102903 04-Jun-2007Security Vulnerability in the Logging Mechanism for Solaris Management Console (SMC) May Lead to Escalation of Privileges
1000051.1200067102901 11-Mar-2008Xorg(1) Contains a Denial of Service Within the X Render Extension's Trapezoid Rendering
1000052.1200068102891 20-May-2010Security Vulnerability in Sun Remote Services (SRS) Net Connect Software
1000053.1200069103003 01-Aug-2007Vulnerability in Redirect Functionality Affects Sun Java System Web Server
1000054.1200070102720 07-Sep-2008Security Vulnerability in GIMP(1) May Lead to Denial of Service (DoS) or Execution of Arbitrary Code
1000055.1200071102996 09-Jul-2007Security Vulnerability in Java Web Start URL Parsing Code May Allow Untrusted Applications to Elevate Privileges
1000056.1200072102993 09-Jul-2007Java Runtime Environment Does Not Securely Process XSLT Stylesheets Contained in XML Signatures
1000058.1200074102760 15-Jul-2007Security Vulnerability in Processing GIF Images in the Java Runtime Environment May Allow an Untrusted Applet to Elevate Privileges
1000063.1200079103084 25-Sep-2007A Security Vulnerability in the Handling of Thread Contexts in the Solaris Kernel May Allow a Denial of Service (DoS)
1000064.1200080103015 02-Aug-2007A Security Vulnerability in Processing XSLT Style Sheets Affects Sun Java System Portal Server Software 7.0
1000065.1200081103029 16-Aug-2007Two Security Vulnerabilities in Solaris 8 Role Based Access Control (rbac(5)) may Allow Unauthorized Remote Access
1000066.1200082102764 04-Jan-2007Security Vulnerability in the Sun Java System Content Delivery Server May Allow Unauthorized Viewing of Content Details
1000068.1200084102900 30-Apr-2007Solaris 9 Systems With Solaris Auditing (BSM) Enabled may Panic if Certain Audit Classes are Being Audited
1000070.1200086102896 02-May-2007Directory Server May Hang Due to a Memory Leak in the Network Security Services (NSS) Software
1000075.1200091102781 11-Apr-2007RSA Signature Forgery Issues in Mozilla 1.7 for Solaris 8, 9 and 10
1000076.1200092102885 22-Apr-2007Multiple Security Vulnerabilities in Mozilla Layout Engine for Solaris 8, 9 and 10
1000079.1200095102766 13-Mar-2007Multiple Security Vulnerabilities in the gzip(1) Command May Lead to Denial of Service (DoS) or Execution of Arbitrary Code
1000082.1200098102733 08-May-2008Security Vulnerability With HTTP Requests in Sun Java System Server(s)
1000084.1200100102705 30-Jan-2007Security Vulnerabilities (Integer Overflows and a Denial of Service) in the FreeType 2 Font Engine
1000085.1200101102728 07-Feb-2007Security Vulnerability in the kcms_calibrate(1) Command
1000087.1200103102796 12-Feb-2007A Security Vulnerability in the TCP Implementation of Solaris 10 Systems May Result in a System Panic Under High TCP/IP Traffic
1000089.1200105102569 29-Jan-2007On Solaris 10 a System Panic Due to a Race Condition May OccurWhen SNMP Queries are Processed (such as when netstat(1M) or ifconfig(1M) are run)
1000090.1200106102729 18-Dec-2006Security Vulnerabilities in the Java Runtime Environment may Allow Untrusted Applets to Elevate Privileges and Execute Arbitrary Code
1000092.1200108102268 06-Nov-2006Security Vulnerability in Sun Grid Engine/N1 Grid Engine rsh(1) Binary
1000101.12001391012665534020-Jul-2003Automountd(1M) May Stop and/or OpenSSH May Experience Authentication Issues
1000102.12001401012065208119-Jan-2010On Sun Linux and Cobalt Legacy Products, an Unauthorized Local User May be Able to Gain Root Access Rights Due to an Issue With The ptrace() Function
1000103.12001411012945588124-Jan-2010Sun Linux 5.0 Buffer Overflow in Window Maker 0.80.0 and Earlier
1000105.12001451013715740019-Jan-2010Vulnerability in Solaris "AnswerBook2 Documentation Server" Admin Script
1000108.12001501012445418128-Apr-2003A System Wide Denial of Service May be Caused Through The in.telnetd(1M) Daemon
1000111.1200153103200 31-Jan-2008Multiple Security Vulnerabilities in the Solaris X Server Extensions May Lead to a Denial of Service (DoS) Condition or Allow Execution of Arbitrary Code
1000113.12001561008792751310-Apr-2003Buffer Overflow in XView
1000116.12001611012555506024-Jan-2010Access Control List (ACL) Permissions May Not be Consistently Set on New VERITAS File System (VxFS) Files
1000117.1200162103072 21-Oct-2007An Untrusted Java Web Start Application or Java Applet May Move or Copy Arbitrary Files by Requesting the User to Drag and Drop a File from Application or Applet Window to a Desktop Application
1000118.1200163103055 11-Feb-2008Security Vulnerability in Solaris 8 Directory Functions
1000120.1200165103065 07-Oct-2007Security Vulnerability in the vuidmice(7M) STREAMS Modules May Lead to a Denial of Service (DoS) Condition
1000121.12001661011665024013-Mar-2003Solaris FTP Server (in.ftpd(1M)) is Vulnerable to Denial of Service Attack
1000122.12001671012075210219-Jan-2010Sun ONE Directory Server may be Terminated by Unprivileged LDAP Client Operations
1000123.12001681012085211120-Mar-2003On Solaris 9 a Security Issue with the newtask(1) Command May Lead to Unauthorized Root Access
1000125.12001711011765060324-Jan-2010Sun ONE/iPlanet Web Server Enable HTTP TRACE Method by Default
1000128.12001741011885108123-Feb-2003In Debug Mode, the ftp(1) Command Displays the Password on Screen in Clear Text
1000129.12001751011895108226-Feb-2003RPC Services Using TCP Ports are Susceptible to Denial of Service Attacks
1000130.12001761010304454127-Feb-2003Solaris admintool(1M) Media Installation Path Buffer Overflow
1000132.12001781011625008319-Jan-2010Java Virtual Machine May Allow Illegal Access to Protected Fields or Methods
1000133.12001791011815075109-Feb-2003Security Vulnerability in mail(1) in Solaris
1000135.12001811014295747620-May-2010Security Vulnerability in SunForum Involving the H.323 Protocol
1000136.1200182102947 28-Nov-2007A Security Vulnerability Resulting From Solaris 10 fcp(7D) and devfs(7FS) Interaction May Allow Certain File Operations to Cause a System Hang
1000137.1200183102508 07-Feb-2008Security Vulnerability May Allow Firewall Compromise or Creation of Denial of Service (DoS) Condition
1000138.12001841015275759524-Jan-2010Sparse Files Written to Shared Sun StorEdge QFS or Sun StorEdge SAM-QFS File Systems May Contain Deleted File Content
1000139.1200185103011 21-Oct-2007Security Vulnerability in Mozilla 1.7 May Allow Arbitrary JavaScript Commands to be Run
1000144.1200190102994 15-Oct-2007Manipulated TIFF Files or Documents Containing Manipulated TIFF Files May Lead to Heap Overflows and Arbitrary Code Execution
1000145.1200191103118 26-Jun-2008Two Security Vulnerabilities in the bzip2(1) Command may Allow the Permissions of Arbitrary Files to be Modified or Allow for Arbitrarily Large Files to be Created
1000148.1200196102648 22-Oct-2010Security Vulnerability in RSA Signature Verification Impacting Multiple SUN Products
1000150.1200198102914 01-Jul-2007A Security Vulnerability in the Implementation of the RPCSEC_GSS API Affects the Kerberos Administration Daemon (kadmind(1M))
1000151.1200199102902 04-Jun-2007Security Vulnerability in the Authentication Mechanism for Solaris Management Console (SMC) May Lead to Escalation of Privileges
1000156.12002051014265747321-May-2006Security Vulnerabilities in "Safe.pm" and "CGI.pm" Perl Modules
1000159.1200208102024 28-May-2006Security Vulnerability in Sun N1 System Manager 1.1
1000162.1200211102016 23-Apr-2006The Solaris Management Console (SMC) Enables TRACE HTTP by Default
1000163.1200212102033 23-Apr-2006Vulnerabilities in lpsched(1M) May Allow an Unprivileged User to Remove System Files or Disable the LP Service
1000176.1200225101810 31-Jan-2006Security Vulnerability in the Kerberos krb5_recvauth() Library Routine
1000177.12002261015495761901-Feb-2006X Display Manager (xdm(1)) May Crash Due to Invalid XDMCP Request
1000180.1200229101905 12-Sep-2005Security Vulnerability in Sun Java System Application Server Exposes Contents of "jar" File of Deployed Web Applications
1000188.1200241101841 09-Aug-2005Updated Solaris 8 Patches for Apache Security Vulnerabilities
1000190.1200243101899 18-Sep-2005A Security Vulnerability in the Solaris 10 "tl" Driver May Allow a Local Unprivileged User the Ability to Panic the System
1000193.1200246101953 02-Oct-2005Security Vulnerability in XFree86 Server for JDS
1000197.1200250101897 22-Aug-2005Security Vulnerability in Solaris 10 "DHCP" Clients
1000200.12002551016525774020-May-2010Security Vulnerability With Java Web Start (J2SE 5.0)
1000201.12002561016235770614-Dec-2004Security Vulnerability in the kcms_configure(1) Command May Allow Local Users the Ability to Modify Any File on the System
1000204.12002601016155769602-Dec-2004Security Vulnerability When sendmail(1) Does Not Check Length of DNS Replies
1000205.12002611015785765519-Jan-2010The FTP Daemon of Heimdal is Vulnerable to Multiple Signal Handler Race Conditions
1000208.12002661015675764319-Jan-2010Netscape NSS Library Vulnerability Affects Sun Java Enterprise System
1000212.12002731014545750923-Feb-2004Security Vulnerability in "/usr/lib/print/conv_fix" May Allow Unauthorized Privileges and/or Denial of Service
1000218.12002921014085745108-Dec-2003Security Vulnerabilities in Solaris Printing
1000224.1200299101807 24-Jul-2005Security Vulnerability In the Multilanguage Environment Library "libmle" Shipped with the Japanese Locale
1000230.12003051016505773724-Jan-2010Security Vulnerabilities in Solaris AnswerBook2 Documentation
1000232.12003071016395772517-Jan-2005A Local or Remote Unprivileged User May be Able to Cause a Denial of Service (DoS) of an FTP Server
1000235.1200310101940 03-Oct-2005Security Vulnerability in Solaris UFS When Logging is Enabled
1000238.12003141016545774224-Jan-2010Cross Site Scripting Vulnerability in Sun Java System Application Server
1000239.12003161016275771016-Dec-2004Security Vulnerability in the newgrp(1) Command May Allow Unauthorized Root Privileges
1000241.12003251015825765917-Oct-2004Security Vulnerability in the in.rwhod(1M) Daemon
1000244.12003331015375760619-Jan-2010Buffer Overflow Vulnerabilities in Sun Java System Web Proxy Server 3.6 Service Pack 4
1000245.12003361014825754504-Apr-2004A Security Vulnerability With the Solaris TCP/IP Networking Stack May Allow an Unprivileged User to Cause a Denial of Service
1000250.12003551013445686029-Sep-2003sendmail(1M) Buffer Overflow Vulnerability in Address Parsing Function prescan()
1000251.12003561013645722120-May-2010A Vulnerability in JRE May Allow an Untrusted Applet to Escalate Privileges
1000252.12003581013115616124-Jan-2010Sun Linux Vulnerability in VNC Package May Allow Local or Remote Unauthorized Access
1000253.12003601011074778401-Oct-2010Sun Linux/Sun Cobalt Security Vulnerability in "fetchmail"
1000254.12003611012845566019-Jan-2010Sun Linux 5.0 Security Vulnerability With SSL Enabled Software May Allow "Man-in-the-Middle" Attack on KDE Software
1000257.12003641014285747524-Jan-2010SunPlex (Sun Cluster) Multiple Security Vulnerabilities in OpenSSL Secure Sockets Layer (SSL) and Transport Layer Security (TLS) Protocols
1000258.12003661012755554025-Feb-2004Solaris 8 and Solaris 9 NIS Clients May Not Allow Users With +/-Passwd Syntax Entries to Login
1000259.12003671013985743429-Jan-2004Remote Denial-Of-Service Vulnerability in BIND DNS Daemon (in.named)
1000262.12003701014455749705-Feb-2004Security Vulnerability in Solaris Systems With Basic Security Module (BSM) Configured to Audit the "ad" or "as" Audit Class
1000267.12003771014885755106-May-2004Memory Leak in llc1(7D) Driver and Utilization of kstat(1M) on Solaris 9 May Cause a System Panic
1000268.12003781014045744103-Dec-2003Security Vulnerability in dtprintinfo(1)
1000271.1200386101918 18-Sep-2008Security Vulnerability in the Logging Output of Sun Java System Access Manager
1000272.1200387102943 10-Oct-2007Multiple Memory Corruption Vulnerabilities in Mozilla 1.7 for Solaris 8, 9, and 10
1000275.1200390102866 23-Sep-2007Security Vulnerability in the IP Implementation for Solaris 8 and 9 May Allow a Denial of Service
1000277.1200392103024 14-Aug-2007Vulnerability in the Java Runtime Environment Font Parsing Code may Allow an Untrusted Applet to Elevate Privileges
1000290.1200405101952 04-Mar-2007Multiple Security Vulnerabilities in Mozilla 1.4
1000292.1200407102664 29-Jan-2007A "Use-after-free" Vulnerability in Sendmail Versions Before 8.13.8 may Allow a Denial of Service (DoS)
1000295.12004101014785753917-Jan-2007Security Vulnerability Involving the Common Desktop Environment (CDE) dtlogin(1X) Command When Parsing XDMCP Requests (CERT VU#179804)
1000297.1200412102713 11-Nov-2008A Security Vulnerability in Solaris libnsl(3LIB) may lead to a Denial of Service (DoS) to the rpcbind(1M) Service
1000298.1200413102652 28-Jan-2007Security Vulnerability in X Display Manager (xdm(1)) Xsession Script
1000299.1200414102697 29-Jan-2007A Security Vulnerability in Solaris 10 ICMP Handling May Allow a SystemPanic and Result in Denial of Service (DoS)
1000301.1200416102497 06-Nov-2006Security Vulnerability in Webmail May Allow Messages Embedded With Javascript to be Executed in End User's Browser
1000304.1200420102496 18-Oct-2006Security Vulnerability May Allow a Local Unprivileged User to Partially Read Arbitrary Files
1000305.1200422102460 27-Aug-2006A Security Vulnerability in sendmail(1M) Versions Prior to 8.13.7 May Allow a Denial of Service (DoS) To Occur
1000308.1200425102693 01-Nov-2006Security Vulnerability With Graphics Driver for Solaris 10 and Linux on Certain Systems
1000310.1200428102041 07-Nov-2006Security Vulnerability in the libexif JPEG Image Processing Library
1000311.1200429102054 07-Nov-2006Security Vulnerability in Symantec/VERITAS NetBackup
1000315.1200433102012 05-Nov-2006Security Vulnerability With Sun Java System Application Server Reverse SSL Proxy Plugin
1000317.1200435101987 13-Oct-2005Security Vulnerability May Allow a Local Unprivileged User to Cause a System Panic in the "/proc" Filesystem
1000320.12004381012165244310-May-2006Solaris Security Vulnerability due to a Buffer Overflow in lpq(1B)
1000324.1200443102108 26-Apr-2006Security Vulnerability Using find(1) to Search "/proc" May Cause a Denial of Service (DoS) Condition
1000329.1200448102215 20-Apr-2006Security Vulnerability With The "/usr/ucb/ps" Command
1000334.1200453102782 14-Feb-2007Security Vulnerability in rm(1) may Lead to Unauthorized Deletion of Files or Directories
1000335.1200454102773 22-Jan-2007Security Vulnerabilities in the tip(1) Command May Allow Execution of Arbitrary Code With Elevated Privileges
1000336.1200455102731 18-Dec-2006Security Vulnerabilities Related to Serialization in the Java Runtime Environment may Allow Untrusted Applets to Elevate Privileges
1000337.1200456102732 18-Dec-2006Security Vulnerabilities in the Java Runtime Environment may Allow an Untrusted Applet to Access Data in Other Applets
1000339.1200459101924 02-Jan-2007Security Vulnerability in the Sun Ray Utility utxconfig(1)
1000340.1200460102149 06-Nov-2006Security Vulnerability in x64 Kernel Processing may Cause a System Panic
1000341.1200463102324 26-Sep-2006Sun Cobalt sendmail(8) Security Issue Involving Signal Handling Daemon
1000345.1200467102509 02-Aug-2006Security Vulnerability in Sun's Internet Protocol (IP) Implementation May Allow Local Users to Bypass the Routing Table
1000349.1200471102670 30-Oct-2006A Vulnerability in Network Security Services (NSS) Affects Sun Java System Web Server and Sun ONE Application Server
1000350.12004721016435773005-Nov-2006Security Vulnerability in Samba(7) Versions Prior to 3.0.10 May Allow Unauthorized Root Privileges
1000352.1200474102657 06-Dec-2006Security Vulnerability With RSA Signature Affects the Sun Secure Global Desktop Software
1000354.1200476102519 06-Nov-2006Security Vulnerability Due to Buffer Overflow in The format(1M) Command May Allow Privilege Elevation For Certain RBAC Profiles
1000358.1200480101881 12-Oct-2005Security Vulnerabilities In Solaris 10 SCTP Socket Option Processing
1000359.1200481101989 13-Oct-2005Netscape NSS Tools Vulnerability Affects Sun Java Enterprise System and Solaris
1000361.1200483102206 26-Jul-2006Solaris Hosts are Vulnerable to a Denial of Service Induced by an Internet Transmission Control Protocol (TCP) "ACK Storm"
1000364.1200486102503 12-Jul-2006Security Vulnerability in the X Inter Client Exchange Library (libICE)
1000366.1200488102117 22-May-2006Security Vulnerability in PC Netlink 2.0 "slsadmin" May Allow Files to be Opened Insecurely
1000372.1200494102262 03-Jan-2010Security Vulnerability in sendmail(1M) Versions Prior to 8.13.6
1000375.12004971015935767318-Apr-2006Security Vulnerability With ARP Handling Could Cause System to Hang
1000387.12005091016745776614-Apr-2005Certain Network Services Disruptions or "Spoofs" Could Occur as a Result of Possible Network Port Theft
1000388.12005101016915778604-May-2005automountd(1M) May Stop When Accessing "/xfn/_x500"
1000389.12005121016645775419-Jan-2010The Sun ONE and Sun Java System Directory Servers Contain a Buffer Overflow in the Access Control Implementation for LDAP Requests
1000395.1200518101816 27-Oct-2005Security Vulnerabilities in the gzip(1) Command
1000396.1200519101794 30-Oct-2005Security Vulnerability in the Solaris Runtime Linker (ld.so.1(1))
1000399.1200522101960 09-Oct-2005Security Vulnerability Involving the umount(8) Utility
1000401.1200524101886 31-Aug-2005Security Vulnerabilities in the Sun StorEdge Enterprise Backup Software
1000404.12005291016135769419-Jan-2010Security Vulnerability When Samba Trims Certain Directory Names Down to Absolute Paths
1000408.12005361015445761426-Jul-2004The in.named(1M) Process May Die Upon Receiving Dynamic Updates
1000410.12005381013085612107-Sep-2003Security Vulnerability in the Solaris 9 in.ftpd(1M) Server May Allow Unauthorized "root" Access
1000411.12005391013035604004-Aug-2003Sun Linux 5.0 Vulnerability in "file" Utility May Allow a Local Unprivileged User to Execute Arbitrary Code
1000412.12005401013045604104-Aug-2003Sun Linux 5.0 Security Vulnerability in "fileutils" Package May Give Local Users Unauthorized Privileges
1000413.12005421013165630007-Aug-2003Solaris 2.6 and 7 cachefs Patches May Overwrite the inetd.conf(4) File
1000417.12005491013725740424-Jan-2010Security Vulnerability Issues With Solstice X.25 snmpx25d daemon
1000418.12005501013735740516-Oct-2003Security Vulnerability in Solaris zlib(libz(3)) Compression Library Function gzprintf()
1000421.12005531012695542017-Jun-2003A Buffer Overflow Vulnerability in the dbm_open(ndbm(3C) and dbm(3UCB)) and dbminit(3UCB) Database Functions May Allow Unauthorized Root Privileges
1000425.1200558103180 08-Sep-2008Multiple Security Vulnerabilities in the Sun Java System Identity Manager May Allow HTML Injection, Cross-Site Scripting Exploits or Unauthorized Redirection
1000426.1200559103197 04-Feb-2008Multiple Security Vulnerabilities in PostgreSQL Shipped with Solaris 10 May Allow Elevation of Privileges or Denial of Service (DoS)
1000430.12005641012305358015-Apr-2003Security Vulnerability in Samba(7) Versions 2.2.2 Through 2.2.6 May Allow Remote User Unauthorized Privileges
1000433.12005671012605514119-Jan-2010Sun Management Center (SunMC) May Create Directories or Files Writable by Unpriveleged Users
1000440.12005761011845090417-Feb-2003Sun sendmail(1M) does not Handle Some ".forward" Constructs Correctly
1000442.1200580103153 29-Nov-2007Users in lx(5) Branded Zones May be Able to Panic Solaris 10 x86 Systems
1000443.1200581103119 20-May-2010Security Vulnerability in the Sun Remote Services (SRS) Net Connect Software
1000444.1200582103143 06-Nov-2007A Security Vulnerability in Solaris Volume Manager (SVM) May Allow a Denial of Service (DoS)
1000447.1200585102747 07-Nov-2007Security Vulnerabilities in OpenSSL May Lead to a Denial of Service (DoS) to Applications
1000449.1200587103121 21-Oct-2007Multiple Memory Corruption Vulnerabilities in Layout Engine for Mozilla 1.7
1000450.1200588102964 23-Oct-2007Multiple Security Vulnerabilities in samba(7) May Allow Remote Code Execution, Elevation of Privileges, Remote Shell Command Execution, or Denial of Service (DoS)
1000452.1200590103082 12-Oct-2007Security Vulnerability in the Solaris RPC Services Library (librpcsvc(3LIB)) may Lead to a Denial of Service (DoS) Against Networked File Systems
1000453.1200591102874 03-Sep-2007A Security Vulnerability in Sun Cluster Software may Lead to Data Corruption and "send_mondo" Panics
1000454.1200592102886 25-Jul-2007Multiple vulnerabilities in libfreetype, Xsun(1) and Xorg(1)
1000456.1200594102926 25-Jun-2007Security Vulnerability in the Solaris libsldap Library May Allow a Denial of Service to nscd(1M)
1000457.1200595102834 03-Jun-2007A Security Vulnerability in How xscreensaver(1) Interacts With GNOME Assistive Technology May Allow Arbitrary Command Execution
1000459.1200597102911 23-May-2007Security Vulnerability in NFS Client Module May Lead to a Denial of Service Condition
1000460.1200598102921 28-May-2007A Security Vulnerability in the Solaris 10 inetd(1M) Service May Lead to a Denial of Service (DoS) Condition
1000461.1200599102997 09-Jul-2007Java Secure Socket Extension Does Not Correctly Process SSL/TLS Handshake Requests Resulting in a Denial of Service (DoS) Condition
1000466.1200604102985 14-Aug-2007Security Vulnerability in the Kerberos Administration Daemon (kadmind(1M)) May Lead to Arbitrary Code Execution
1000467.1200605102971 19-Aug-2007Multiple Memory Corruption Vulnerabilities in Mozilla 1.7 for Solaris 8, 9 and 10
1000468.1200606102988 20-Aug-2007Security Vulnerabilities in the ata(7D) Disk Driver May Lead to a Denial of Service Condition
1000470.1200608102735 08-Jan-2007Security Vulnerability With StarOffice/StarSuite Versions 6, 7 and 8 Related to the '.wmf' File Format
1000472.1200610102656 08-Nov-2006Security Vulnerability Issue of Forged RSA Signatures for Java Enterprise System and Solaris
1000474.1200612101740 28-Nov-2006Solaris 10 Security Issue With C Library (libc(3LIB)) and libproject(3LIB)
1000475.1200613102909 29-May-2007Cross-site Scripting Vulnerability in Sun Java System Messaging Server
1000482.1200620102828 25-Apr-2007Security Vulnerability in the Sun Fire X2100M2 and X2200M2 Implementation of IPMI
1000486.1200624102140 22-Mar-2007Security Vulnerability in Sun Java System Access Manager May Allow Administrator Access to Users Logged in As Root
1000489.1200627102662 28-Feb-2007Security Vulnerabilities in the Apache 2.0 Web Server "mod_rewrite", "mod_imap" and "mod_ssl" Modules
1000492.1200630102763 05-Feb-2007Multiple Security Vulnerabilites in Mozilla 1.7 for Solaris 8, 9, and 10
1000496.1200635103164 05-Feb-2008Security Vulnerability in the vuidmice(7M) STREAMS Modules May Lead to a System Panic
1000498.1200637103141 10-Dec-2007Manipulated Database Documents for StarOffice/StarSuite 8 May Lead to Arbitrary Code Execution
1000501.12006401011124790313-Apr-2003Security Vulnerability in the ypserv(1M) and ypxfrd(1M) Daemons
1000502.1200641103165 27-Jan-2008A Security Vulnerability in libdevinfo(3LIB) May Allow Unauthorized Access to Files on the System
1000503.1200642103114 28-Jan-2008Multiple Security Issues Within The X Font Server (xfs(1)) QueryXBitmaps and QueryXExtents Protocol Handlers
1000506.1200647103061 01-Oct-2007Security Vulnerability in Solaris Named Pipes (pipe(2)) May Allow Unauthorized Data Access
1000507.1200648103002 20-Dec-2007Cross-site Scripting Vulnerability in Sun Java System Web Server and Web Proxy Server
1000511.12006541011615008121-May-2010Incorrect Certificate Validation in Java Secure Socket Extension (JSSE), Java Plug-In and Java Web Start
1000515.12006581011104781501-Jan-2003NFS Denial of Service can be Caused by a Client Application Killing the lockd(1M) Daemon
1000516.12006591011775062605-Feb-2003Certain UDP RPC Packets May Cause a Denial of Service in Solaris
1000518.1200661103083 27-Nov-2007Race Condition in the Solaris Remote Procedure Calls (RPC) Module May Result in a System Panic
1000520.12006631016035768308-Nov-2007Security Vulnerability in Netscape 6.x and 7 With PNG Files
1000524.1200667103127 28-Oct-2007Sun Fire X2100/X2200 M2 Servers ELOM Software is Vulnerable to Arbitrary Command Execution
1000531.1200676102865 16-Apr-2007Security Vulnerability in Mozilla 1.7 JavaScript Engine for Solaris
1000532.12006771013385672016-Apr-2007GNOME 2.0 XScreenSaver Will Not Lock as Root
1000533.1200678102835 08-Mar-2007Security Vulnerability When Using java.policy With RMI-IIOP
1000539.1200684102779 24-Jan-2007Security Vulnerability in the Sun Ray Server Software Admin GUI
1000542.12006871016995779520-Dec-2006Security Vulnerability in the WU-FTPD "wu_fnmatch" Function May Result in a Denial of Service (DoS)
1000543.1200688102171 06-Nov-2006Security Vulnerabilities in the Java Runtime Environment may Allow an Untrusted Applet to Elevate its Privileges
1000544.1200690102198 07-Sep-2006Security Vulnerabilities in the Apache 2 Web Server
1000558.1200704102794 16-May-2007Due to a Security Vulnerability in StarOffice, Manipulated StarCalc 1.0 Files May Allow Arbitrary Code Execution
1000560.1200708102696 06-Apr-2008A Security Vulnerability in RSA Signature Verification Affects Sun Java System Application Server, Proxy Server and Web Server
1000565.1200713102894 28-May-2007Security Vulnerability in PostgreSQL SECURITY DEFINER Functions May Allow Escalation of Privileges
1000566.1200714102725 29-May-2007A Malformed Packet Received by snmpd(1) via TCP may Cause a Denial of Service (DoS)
1000568.1200717102294 02-May-2007Sun Java System Directory Server: Denial of Service May Occur Due to Large Memory Allocation for Specific LDAP Requests
1000569.1200718102869 06-May-2007Security Vulnerability Relating to the acl(2) System Call May Allow Denial of Service (DoS) to the System
1000570.12007201015055757331-May-2004Buffer Overflow in sendmail(1M) Ruleset Parsing May Result in Unauthorized Privileges
1000574.12007261014275747411-Jan-2004Security Vulnerability Involving the tcsetattr(3C) Library Function on SPARC Based Systems
1000579.12007391014925755519-May-2010Java Runtime Environment Remote Denial of Service (DoS) Vulnerability
1000584.12007441014065744419-Jan-2010Sun Grid Engine 5.3 Software May Experience Security Vulnerabilities in OpenSSL
1000588.12007651013515692223-Sep-2003Sun Linux 5.0 sendmail(1M) Buffer Overflow Vulnerability
1000590.12007721012385392219-Jan-2010Quick Removal of a Sun Ray Smartcard May Leave Desktop Session Open
1000591.12007731012895576024-Jan-2010Sun Linux 5.0 Vulnerability in pam_xauth(8) Module May Allow Forwarding of Root Authorization to Unprivileged Users
1000594.12007771011955140024-Jan-2010Sun Linux and Cobalt Legacy Products are Vulnerable to a sendmail(1M) Buffer Overflow
1000595.12007781012785560119-Jan-2010On Sun Linux, an Unauthorized Remote User May be Able to Execute Arbitrary Commands With the "xpdf" User's Privileges
1000601.12007851013455686109-Oct-2003Secure Shell Daemon (sshd(1M)) Buffer Management Security Vulnerability
1000602.12007861013695734012-Oct-2003Solaris Security Vulnerability Involving the sysinfo(2) System Call
1000604.12007891013815741429-Apr-2004Buffer Overflow Vulnerability in the CDE DtHelp Library May Allow Unauthorized "root" Access
1000605.12007901014775753801-Apr-2004The Sun Secure Shell Daemon (sshd(1M)) May Fail to Log SSH Client IP Addresses
1000606.12007911014105745309-Dec-2003The pfexec(1) Command May Execute a "Profile" Command With Additional Privileges
1000608.12007931012105222211-Dec-2003In Solaris 8 and Solaris 9 a Buffer Overflow in the LDAP Name Service May Lead to Unauthorized Root Access
1000609.12007941013745740621-Oct-2003NFS Server May Panic Upon Receipt of Certain Invalid Client Requests
1000610.12008061012625522124-Jan-2010Sun One Application Server May Disclose JSP Source
1000611.12008101013935742803-Sep-2008TCP Port Conflict Between Sun Cluster for OPS/RAC and Solaris Secure Shell Server, and Possible Denial of Service Attack by Unprivileged Users Upon Sun Cluster
1000612.12008131012995594024-Jan-2010Sun Linux 5.0 CRLF Injection Vulnerability in Lynx 2.8.4 and Earlier
1000613.12008141012715546019-Jan-2010Sun ONE Application Server May Incorrectly Validate User Authentication Information With LDAP
1000614.12008151012885574010-Jul-2003Sun Linux 5.0 Buffer Overflow Vulnerability In "Pine" May Allow Remote Unprivileged Users to Cause a Denial of Service
1000620.12008211013465686224-Jan-2010Sun Linux Vulnerability in OpenSSH May Allow a Remote Unprivileged User to Execute Arbitrary Code
1000621.12008221012425410024-Apr-2003Security Vulnerability With The lofiadm(1M) Command in Solaris 8
1000622.12008231010864672424-May-2010The PHP on Sun/Cobalt Platforms Have Exploitable Vulnerabilities
1000624.12008251011985188407-May-2003Security Vulnerability in the Network Services Library, libnsl(3LIB), Affecting rpcbind(1M)
1000625.12008281012215262008-Apr-2003sendmail(1M) Parses Addresses Incorrectly in Certain Corner Cases
1000630.1200837103071 21-Oct-2007Java Runtime Environment (JRE) May Allow Untrusted Applets or Applications to Display An Oversized Window so that the Warning Banner is Not Visible to User
1000631.1200838102863 25-Sep-2007Security Vulnerability in StarOffice 8 May Lead to Heap Overflow and Arbitrary Code Execution
1000632.1200839103069 09-Sep-2009Installation of Sun Java System Access Manager 7.1 on Sun Java System Application Server 9.1 or 8.x May Compromise Application Server Security
1000634.1200841103073 02-Oct-2007Multiple Security Vulnerabilities in Java Web Start Relating to Local File Access
1000637.1200844103150 01-Jan-2008A Security Vulnerability in unzip(1L) May Set Unintended Permissions on Extracted Files
1000642.1200851103087 28-Oct-2007Security Vulnerability in the Solaris 10 Internet Protocol (ip(7P)) may Lead to a Denial of Service (DoS) Condition
1000647.1200856102934 21-Oct-2007Security Vulnerabilities in the Java Runtime Environment Image Parsing Code May Allow a Untrusted Applet to Elevate Privileges
1000648.1200858103130 12-Feb-2008Security Vulnerability in Solaris 10 OpenSSL SSL_get_shared_ciphers() Function
1000649.1200859103063 17-Feb-2008Security Vulnerability in BIND 8 May Allow Cache Poisoning Attack
1000653.1200863102948 24-Jul-2007A Security Vulnerability in lbxproxy(1) may Allow Unauthorized Read Access to Files
1000654.1200864102798 19-Jan-2010Security Vulnerability in the TCP Implementation of Solaris Systems May Allow a Denial of Service When Accepting New Connections While Undergoing a TCP "SYN Flood" Attack
1000655.1200865102917 14-Jun-2007Security Vulnerability with Manipulated RTF Files May Lead to Heap Overflows and Arbitrary Code Execution
1000657.1200867102961 26-Jun-2007Security Vulnerability in scp(1) May Allow Execution of Unintended Commands
1000659.1200870102957 27-Jun-2007Security Vulnerability With Java Web Start May Allow Application to Escalate Privileges
1000660.1200871102987 04-Nov-2009libpng(3) Contains a Denial of Service (DoS) Vulnerability
1000664.1200875102876 12-Jun-2007Security Vulnerability in Sun Java System Directory Server Leaks Information About Existence of Attributes
1000665.1200876103109 08-Oct-2007Security Vulnerabilities in the Solaris Trusted Extensions "labeld" Service May Lead to a Denial of Service (DoS) Condition
1000666.1200877101783 05-Nov-2006Security Vulnerability in Samba's "ms_fnmatch()" Function May Result in a Denial of Service (DoS)
1000667.1200878102667 16-Oct-2006Security Vulnerability in the Solaris 10 TCP Fusion Code May Lead to a System Panic, Resulting in a Denial of Service (DoS)
1000671.1200883102557 10-Jun-2010Java Plug-in and Java Web Start May Allow Applets and Applications to Run With Unpatched JRE
1000673.12008851016655775505-Nov-2006Buffer Overflow in telnet(1) Client Software
1000679.1200891102286 27-Jul-2006A Local Unprivileged User May be Able to Cause a Denial of Service (DoS) to Solaris 10 Hosts via the "/net" Mount Point
1000684.12008961014535750810-May-2006Multiple Buffer Overflows in "/usr/bin/uucp" May Allow Unauthorized uucp(1C) User ID Access
1000693.12009061015585763101-Feb-2006Security Vulnerabilities in the Kerberos Key Distribution Center (KDC) Daemon and Kerberos V5 Libraries
1000700.1200918101799 09-Aug-2005Security Vulnerability in JRE Plug-in affects the Sun Java Desktop System for Linux
1000702.1200920101690 05-Jun-2005A Security Vulnerability in Sun ONE Application Server May Disclose Files
1000707.1200925101782 21-Sep-2005Mulitple Security Vulnerabilities in Oracle Affect SunMC
1000714.12009351016535774124-Jan-2010Security Vulnerability With Java Plug-in in JRE/SDK for JDS
1000718.12009421015905767019-Jan-2010Security Vulnerability With The HTTP TRACE Functionality in Sun Java System Application Server
1000726.12009571014315747919-Jan-2004Security Vulnerability With Loading Arbitrary Kernel Modules in Solaris Kernel
1000727.12009581014255747227-Jan-2004Security Vulnerability in ASN.1 May Affect Solaris Internet Key Exchange (IKE)
1000732.12009711016795777124-Jan-2010A Limited Number of Sun StorEdge 6130 Arrays May be Vulnerable to Unauthorized Access
1000734.12009741016705776019-Jan-2010Sun Java System Web Server Denial-of-Service Vulnerability
1000736.1200978101842 08-Aug-2005Security Vulnerability in the "printd" Daemon
1000738.12009801015845766412-Jun-2005Security Vulnerabilities in Samba May Allow Unauthorized Root Privileges
1000743.12009861015135758119-Jan-2010Systems With Sun StorEdge Enterprise Storage Manager 2.1 Installed May Allow an Unprivileged Local User to Gain Root Access
1000744.12009881014965755909-May-2004The Solaris Management Console (smc(1M)) Server May Disclose Information About Files on a Solaris System
1000745.12009891014915755411-May-2004Solaris 9 Patches WITHDRAWN - Security Vulnerability With ypserv(1M) and ypxfrd(1M)
1000749.12009941016325771703-Jan-2005SMC Default Configuration GUI Creates User Accounts With Blank Password Instead of Locked Account
1000751.12009981015805765713-Oct-2004Security Vulnerability When Using LDAP In Conjunction With RBAC
1000752.12009991015815765824-Jan-2010Security Vulnerabilities Involving the utempter(8) Utility
1000757.12010051015705764624-Jan-2010Security Vulnerabilities in Common Unix Printing System (CUPS) May Allow a Remote Unprivileged User to Execute Arbitrary Code
1000758.12010061015725764819-Jan-2010Security Vulnerabilities in ImageMagick(1) May Allow a Remote Unprivileged User to Execute Arbitrary Code
1000761.12010091015365760524-Jan-2010Vulnerability In Sample Application Included With Sun Java System Web Server
1000762.12010101015435761319-Jan-2010Java Runtime Environment May Allow Untrusted Applets to Escalate Privileges
1000763.12010111015035757131-May-2004Sun Crypto Accelerator 4000 v1.0 Software May be Susceptible to OpenSSL Security Vulnerabilities
1000766.12010291013605710019-Jan-2010Sun Linux Multiple Security Vulnerabilities in OpenSSL
1000767.12010301013025602019-Jan-2010Sun ONE Application Server May Disclose JSP Source
1000768.12010311012745552023-Jun-2003BSM Enabled (bsmconv(1M)) Systems With Third Party Login Mechanisms May Experience cron(1M) or at(1) Failures
1000771.12010351012915580013-Jul-2003Fix for Security Vulnerability in dtsession(1X) May Be Lost
1000776.12010421014305747821-Jan-2004Solaris 9 patches 114332-08 and 114929-06 are WITHDRAWN - Patches Disable the Auditing Functionality on Basic Security Module (BSM) Enabled Systems
1000778.12010471013395674017-Mar-2004Security Issue Involving the Solaris sadmind(1M) Daemon
1000782.1201059102883 09-Oct-2007Security Vulnerability in the Human Interface Device (HID) Class Driver for Solaris
1000788.1201065102847 29-Apr-2007Multiple Security Vulnerabilities in Adobe Reader May Lead to Execution of Arbitrary Code
1000789.1201066102895 02-May-2007Security Vulnerability in Sun Java System Directory Server May Cause Denial of Service (DoS)
1000794.12010721016775776903-May-2009Multiple Security Vulnerabilities in libtiff(3)
1000798.1201076102621 26-Feb-2007Cross-site Scripting Vulnerability in Sun Java System Access Manager
1000800.1201078102640 01-Mar-2007Security Vulnerability in Apache 2 Web Server Module 'mod_ssl'
1000801.1201079102663 01-Mar-2007Security Vulnerabilities in the Apache 1.3 Web Server "mod_rewrite" and "mod_imap" Modules
1000809.1201087102192 06-Nov-2006Integer Overflow Vulnerability in Perl May Lead to Application Crash or Code Execution
1000811.1201090102593 10-Sep-2006Security Vulnerability in the Sun Java System Content Delivery Server May Allow Unauthorized Data Access
1000812.1201091102568 25-Sep-2006A Security Issue With Solaris 10 x64 Systems Using IPv6 Forwarding May Result in a Denial of Service (DoS)
1000818.1201097102144 05-Oct-2006Vulnerability With Solaris IPv6 May Allow a Remote User the Ability to Create a Denial of Service Condition
1000819.1201098102606 05-Oct-2006Security Vulnerability in Solaris 10 Link Aggregation may Allow Local Users Total Access to Network Packets
1000821.1201101102513 06-Nov-2006pkgadd(1M) May Set Incorrect Permissions if The pkgmap(4) File Contains a "?"in The "Mode" Field
1000822.1201102102017 07-Nov-2006Security Vulnerability With Java Management Extensions in the Java Runtime Environment may Allow Untrusted Applet to Elevate Privileges
1000824.1201104102030 07-Nov-2006The in.named(1M) Process May Make Unnecessary Queries Causing a Denial of Service
1000826.12011061016715776105-Nov-2006Buffer Overflow in telnet(1) Client Software Also Affects Kerberized Telnet
1000830.1201110102305 12-Jun-2006Security Vulnerability With Sun StorADE Version 2.4 Installation
1000831.1201111102068 20-May-2010Security Vulnerability in Sun Java System Communications Services 6 Delegated Administrator 2005Q1
1000832.1201112102066 23-Apr-2006Security Vulnerability May Allow An Unprivileged Local User to Gain Root Access or Panic the OS
1000835.1201115102292 12-Apr-2006Sun Java Studio Enterprise 8 May Create World-Writable Files When Installed by Root
1000837.1201117102159 17-Apr-2006A Security Vulnerability Involving the "pagedata" Subsystem of the Process File System (/proc(4)) May Cause the System to Hang or Panic
1000838.1201118102113 19-Apr-2006Security Vulnerability in LDAP2 Client Commands
1000845.1201126101974 28-Nov-2005OpenSSL (see openssl(5)) May Allow an Agent to Force a Rollback to a Cryptographically Weak Protocol Version
1000846.1201127102345 06-Nov-2006Security Vulnerability in Sun Java System Directory Server Related to Initial Installation Data
1000850.1201131102570 08-Nov-2006Buffer Overflow Vulnerability in libX11
1000854.1201135102322 27-Jul-2006Security Vulnerability With Sun N1 Grid Engine Daemons
1000855.1201136102356 12-Jun-2006Security Vulnerability in the Solaris 9 in.ftpd(1M) Server May Allow Unauthorized Directory Access
1000861.1201142102040 24-Apr-2006A Security Vulnerability in the "libike" Library May Affect the in.iked(1M) Daemon
1000867.1201148102282 13-Apr-2006Security Vulnerability May Allow 'sh' Process to be Crashed Causing a Denial of Service
1000871.1201152102060 22-Nov-2005Security Vulnerabilities in the traceroute(1M) Utility may Allow Elevated Privileges
1000872.1201153101800 30-Nov-2005Security Vulnerability in the Xsun(1) and Xprt(1) Commands
1000880.12011661016475773418-Jan-2005Security Vulnerability in the Generic Security Services Library libgss(3LIB)
1000887.12011731015185758619-Jan-2010Proxy Authentication to Sun ONE Calendar Server May Fails if Portal Display Preferences Are Changed
1000888.12011751016255770819-Jan-2010Security Vulnerabilities With Java Plug-in in JRE/SDK
1000892.12011801015855766524-Jan-2010Security Vulnerability Involving Webmail
1000893.12011821015735764919-Jan-2010Security Vulnerability in "a2ps" May Allow A Local Unprivileged User to Execute Arbitrary Code
1000898.12011961011635010423-Feb-2004Security Issue with kcms_server Daemon
1000899.12011971014345748321-Jan-2004Basic Security Module (BSM) Functionality is Impaired on Solaris Systems Which Have Removed The SUNWscpu Package
1000908.12012201013075612006-Aug-2003Sun Linux 5.0 Vulnerability Involving the unzip(1) Command
1000909.12012211013855741909-Nov-2003Running Xsun Server in Direct Graphics Access (DGA) Mode May Allow Creation of Temporary Files Insecurely or Allow a "Denial of Service" Attack
1000912.12012241012655530109-Jun-2003Solaris 8 IPv6 Enabled Systems May Panic Handling Certain Packets
1000914.1201227103175 23-Sep-2008Security Vulnerabilities in the Sun Ray Device Manager Daemon
1000917.1201230103192 04-Feb-2008A Security Vulnerability in the Solaris X Window System (X(5)) PCF Font Handler May Lead to Execution of Arbitrary Code or a Denial of Service (DoS) Condition
1000918.12012311012615516024-Jan-2010A Vulnerability in "Sun Management Center (SunMC) Change Manager" Program May Allow Unauthorized Root Privileges
1000924.12012381011344881827-Feb-2003Security vulnerabilities in BIND and libresolv (CERT CA-2002-31)
1000926.12012411011504947524-Jan-2010Security Vulnerabilities with Sun ONE Web Server 4.1SP11 and Earlier
1000928.12012431011094780024-Jan-2010Sun Linux Vulnerabilities in "unzip" and GNU "tar" Commands
1000931.1201247102744 12-Nov-2007Security Vulnerability With RSA Signatures Affects OpenSSL Shipped With Solaris
1000935.1201251103116 18-Sep-2008Cross-site Scripting (XSS) Vulnerability in the Sun Java System Access Manager Administration Console
1000936.1201252103101 25-Oct-2007Security Vulnerability in Solaris 10 SCTP INIT Processing
1000937.1201253103106 14-Oct-2007FTP Security Vulnerability May Cause a Denial of Service to Sun StorEdge 3510 Data Services
1000939.1201255103001 26-May-2008JSP Source Code Disclosure Vulnerability Affects Sun Java System Application Server and Web Server
1000942.1201259102967 14-Jun-2007Integer Overflow and Heap-Based Buffer Overflow Vulnerability in 3rd Party Module (Freetype)
1000943.1201260102970 20-Jun-2007Security Vulnerability in RSA Signature Verification Affects GnuTLS Library Versions Prior to 1.4.4
1000945.1201262102918 26-Jun-2007Security Vulnerabilities in the KSSL Kernel Module May Lead to a System Panic
1000946.1201263102963 26-Jun-2007A Security Vulnerability in the TCP Loopback/Fusion Code May Lead to a System Hang Resulting in a Denial of Service (DoS)
1000947.1201264102962 28-Jun-2007Security Vulnerability in the sshd(1M) Protocol Version 1 Implementation May Allow a Denial of Service to the Host
1000949.1201266102929 03-Jun-2007Security Vulnerability With snmpd(1M) When Processing Certain AgentX Subagent Requests
1000950.1201267102965 12-Jun-2007A Security Vulnerability in Solaris 10 NFS XDR Handling May Allow a Denial of Service to NFS Servers
1000951.1201268102875 12-Jun-2007Security Vulnerability in Sun Java System Directory Server May Allow Unauthorized Data Modifications
1000953.1201270102807 27-Apr-2008Security Vulnerability in StarOffice/StarSuite URL Handler
1000964.1201281102745 28-May-2007A Security Vulnerability in the in.iked(1M) Service May Lead To a Denial of Service (DoS)
1000965.1201282102932 29-May-2007Security Vulnerability in Adobe Flash Player May Allow Unauthorized Header Injection into HTTP Requests
1000973.1201291102699 07-Feb-2007A Security Vulnerability in the Solaris 10 Loopback FileSystem (LOFS) May Allow Files in a Non-global Zone to be Moved or Renamed From a Read-Only Fileystem
1000975.1201293102686 14-Feb-2007Security Vulnerability in RSA Signature Verification Affects Java 2 Platform, Standard Edition
1000976.1201294102772 04-Jun-2009Third-party Applications Using GSS-API May Be Vulnerable to Compromise
1000978.1201296102186 06-Nov-2006Security Vulnerability in the in.rexecd(1M) Daemon on Kerberos Systems
1000982.1201302102543 31-Jul-2006Security Vulnerability on Sun Fire T2000 With Solaris 10 (3/05 HW2)
1000986.12013081012505476020-May-2010Java Virtual Machine (JVM) May Crash Due to Vulnerability in the Java Media Framework (JMF)
1000987.1201310103172 17-Dec-2007Solaris 9 sshd(1M) Patches May Cause Incorrect Audit Data to be Logged
1000988.12013111010234430901-Apr-2003Buffer Overflow in cachefsd in Solaris
1000990.1201315103157 31-Jan-2008Security Vulnerability in Simplified Chinese, Traditional Chinese, Korean, and Thai Language Input Methods
1000991.1201316103158 04-Feb-2008A Security Vulnerability in the USB Mouse STREAMS Module May Lead to a System Panic
1000992.1201317103162 07-Jan-2008Solaris 10 Kernel Patches May Allow Privileged Remote Users to Gain Root Access to Files Shared by NFS Servers
1000994.1201319103060 21-Oct-2007Security Vulnerability in RPCSEC_GSS (rpcsec_gss(3NSL)) Affects Kerberos Administration Daemon (kadmind(1M))
1000995.1201320103170 09-Sep-2008Multiple Security Vulnerabilities Within the GIMP Plugins
1000998.12013241012035202219-Jan-2010Buffer Overflow in Web Connector Module of Application Server
1000999.12013251011655016130-Mar-2003Security Vulnerability with the at(1) Command on Solaris
1001000.12013261011605000813-Jan-2003Security Vulnerability with the Solaris "/usr/lib/utmp_update" Command
1001001.12013271011645014216-Jan-2003Several Kerberos Applications are Vulnerable to a Denial of Service
1001002.12013281010564550901-Oct-2010Sun Cobalt "mod_ssl" ("apache-openssl-1.3.x") May Allow Local Account Compromise
1001005.1201331103160 01-Sep-2008Security Vulnerabilities in libtiff(3) May Allow Denial of Service (DoS) or Privilege Elevation
1001006.1201332103099 02-Sep-2008Multiple Security Vulnerabilities in the Solaris Tag Image File Format Library libtiff(3)
1001007.1201333103159 20-Jul-2010Security Vulnerabilities in Early Versions of Sun SPARC Enterprise M4000/M5000/M8000/M9000 XSCF Control Package (XCP) firmware may Result in a Denial of Service (DoS) Condition
1001009.1201335103139 02-Sep-2008Multiple Security Vulnerabilities in the JavaScript Engine in Mozilla 1.7 for Solaris 8, 9 and 10
1001013.1201339103064 17-Oct-2007Security Vulnerabilities in Solaris Kernel Statistics Retrieval Process May Allow a Denial of Service (DoS)
1001014.1201340103009 30-Aug-2007A Security Vulnerability With the Special File System (SPECFS) strfreectty() Function May Allow a Local Unprivileged User to Panic a System
1001015.1201341101965 29-May-2008A Security Vulnerability in the Sun Cluster Global File System
1001021.1201348102958 02-Jul-2007Cross-site Scripting Vulnerability (XSS) Affecting Pages Generated with JavaDoc Tool
1001022.1201349102978 09-Jul-2007Security Vulnerability in the rcp(1) Command May Allow Execution of Unintended Commands
1001023.1201350102856 15-Jul-2007Security Vulnerabilities in the Network Security Services (NSS) May Affect SSL Clients and SSL Servers
1001025.1201352102161 06-Nov-2006Security Vulnerability in the hsfs(7FS) File System
1001028.1201355102316 29-Aug-2006Privileged Applications Linked to libpkcs11(3LIB) Which Obtain Password Entries Using getpwnam(3C) May Fail or Possibly Grant Elevated Privileges to Local Users
1001032.1201359102462 01-Aug-2006Security Vulnerability With NIS server ypserv(1M) May Allow a Denial of Service (DoS) to Occur
1001042.12013691014445749613-Dec-2006Security Vulnerability in the Apache Web Server "mod_alias" and "mod_rewrite" Modules
1001045.1201372102003 05-Nov-2006Security Vulnerabilities in the Java Runtime Environment May Allow an Untrusted Applet to Elevate Its Privileges
1001047.1201374103096 09-Oct-2007Security Vulnerability in the Solaris Auditing (BSM) Related to Network Auditing May Lead to Denial of Service (DoS)
1001054.1201381102822 30-May-2007Sun Java System Web Server May Allow A User with Revoked Client Certificate to Access Server Instance Under Certain Conditions
1001055.1201382102853 02-May-2007The Directory Server ("ns-slapd") May Exit Unexpectedly When Handling Certain Queries
1001059.1201386102800 12-Apr-2007Security Vulnerabilities in Mozilla 1.7 for Solaris 8, 9 and 10
1001060.1201387102854 16-Apr-2007Security Vulnerability in the Sun Java Web Console May Allow Access to Privileged Data or Lead to Denial of Service
1001063.1201390102722 21-Feb-2007Security Vulnerability With RSA Signature Affects Solaris Applications Utilizing the libike Library
1001064.1201391102802 27-Feb-2007Security Vulnerability in the in.telnetd(1M) Daemon May Allow Unauthorized Remote Users to Gain Access to a Solaris Host
1001068.1201395102574 20-Dec-2006A Security Vulnerability in the Solaris Kernel May Allow a Denial of Service (DoS) Condition to Occur
1001072.12014001012395392420-May-2010Sun Cobalt Samba Versions Earlier Than 2.2.8 May Allow Remote Unauthorized Root Privileges
1001080.12014321014235747005-Jan-2004Security Vulnerability With the Extended Library Function sendfilev(3EXT)
1001084.12014381013195638024-Jan-2010Timing Based Attack Vulnerabilities in the Java Secure Socket Extension
1001085.12014401012865570021-Jul-2003Sun Linux VIM Package May Give Unprivileged Users the Ability to Execute Arbitrary Commands
1001088.12014431012245270024-Jan-2010Sun Linux and Cobalt Legacy Products are Vulnerable to Additional sendmail(1M) Buffer Overflow
1001090.12014451012775560019-Jan-2010Sun Linux NIS server ("ypserv") is Vulnerable to a Denial of Service (DoS) Attack
1001091.12014481012635526003-Jun-2003A Security Vulnerability With The "/usr/lib/utmp_update" Command May Allow Local Unauthorized Privileges
1001092.12014511013125618024-Jan-2010SunOne/iPlanet Web Server Vulnerable to Denial of Service (DoS) Attack
1001093.12014521012435414724-Jan-2010Security Vulnerability in SSL/TLS Block Ciphers may affect Sun ONE/iPlanet Web Server and Application Server
1001094.12014531013845741824-Jan-2010Sun One Web Server Log Analyzer Vulnerability
1001095.12014541013885742324-Jan-2010Sun ONE Web Server "Denial of Service" Vulnerability
1001100.12014601011945134024-Jan-2010Security Vulnerability in Sun Cluster 2.2
1001101.12014621012025198027-Apr-2003The wall(1M) Command May be Used to Send Messages Containing a Forged User ID
1001104.12014771013575704024-Sep-2003The Am7990 ("LANCE") Ethernet Driver (le(7D)) Reuses Old Frame Buffer Data to Pad Packets
1001105.12014781013595708028-Sep-2003Use of "namefs" Mounted pipe(2) and Certain STREAMS Routines May Panic a Solaris System
1001107.12014801013095612213-Aug-2003Sun Linux 5.0 Python Creates Temporary Files Insecurely
1001109.12014821012855568028-Jul-2003Security Vulnerability in the Solaris Runtime Linker ld.so.1(1)
1001112.12014871012315358127-May-2003Security Vulnerability in Samba(7) versions 2.2.2 through 2.2.8 May Allow Remote User Unauthorized Privileges
1001115.12014921013405678019-Jan-2010Recent Mass Mailing of "Worms" or Mail Viruses May Cause Network and Application Performance Degradation
1001117.12014951012415404210-Nov-2003Solaris/SEAM Kerberos 5 Vulnerability due to Buffer Overflow/Underflow in Principal Name Handling
1001119.12014981007502341219-Jan-2010Vulnerability in Solaris "AnswerBook2 Documentation" Server Daemon
1001123.1201505103125 02-Sep-2008Multiple Security Vulnerabilities in JavaScript Engine in Mozilla 1.7 for Solaris 8, 9 and 10
1001124.1201506103167 10-Dec-2007Security Vulnerabilities in Adobe Flash Player May Allow Unauthorized System Access or Generation of HTTP Requests
1001126.1201508103152 17-Dec-2007Security Vulnerability in Sun Management Center (Sun MC) May Allow Unauthorized Access to System and Data
1001130.1201513103188 10-Jan-2008Security Vulnerability in Solaris 10 Related to the dotoprocs() Routine
1001131.1201514103201 10-Feb-2008Security Vulnerability in the libxml2 Library May Lead to a Denial of Service (DoS)
1001133.1201516103177 16-Mar-2008Multiple Security Vulnerabilities in Firefox and Thunderbird for Solaris 10 May Allow Execution of Arbitrary Code and Access to Unauthorized Data
1001134.1201519103079 04-Sep-2008Security Vulnerability in Java Runtime Environment With Applet Caching May Allow Network Access Restrictions to be Circumvented
1001138.12015261011905118102-Mar-2003sendmail(1M) Parses Headers Incorrectly in Certain Corner Cases
1001139.12015271011935130004-Mar-2003UFS File Systems With Logging Enabled are Vulnerable to a Denial of Service (DoS) Attack
1001141.1201531102711 02-Dec-2007Security Vulnerabilities in OpenSSL May Lead to a Denial of Service (DoS) to Applications or Execution of Arbitrary Code With Elevated Privileges
1001142.1201532103136 29-Oct-2007Multiple Security Vulnerabilities in the Layout Engine in Mozilla 1.7 for Solaris 8, 9 and 10
1001144.1201534102759 08-Nov-2007Security Vulnerabilities in OpenSSL Affect Solaris WAN Boot
1001146.1201537103000 25-Oct-2007JSP Source Code Exposure Issue on Windows Platform Affects Sun Java System Application Server
1001147.1201538103033 04-Jan-2009Sun Java System Access Manager Does Not Securely Process XSLT Stylesheets contained in XML Signatures contained in XML Signatures
1001148.1201539103018 03-Sep-2007Security Vulnerability in Solaris 10 BIND: Susceptible to Cache Poisoning Attack
1001150.1201542102888 24-Jul-2007Security Vulnerability in libX11 for Solaris
1001151.1201544102954 26-Jun-2007dtsession(1X) Contains a Buffer Overflow Vulnerability
1001152.1201545102833 30-May-2007Security Vulnerability in Sun Java System Web Server May Allow Unauthorized Access to Host Data With Certain URLs
1001158.1201551102995 17-Jul-2007A Security Vulnerability in the Java Runtime Environment May Allow an Untrusted Applet to Circumvent Network Access Restrictions
1001160.1201553102927 13-Sep-2007Security Vulnerabilities in the SOCKS Module of Sun Java System Web Proxy Server 4.0
1001161.1201554102972 05-Aug-2007Multiple Security Vulnerabilities in the Solaris Gnome PDF Viewer (gpdf(1)) may Allow a Denial of Service (DoS) Condition or Lead to Execution of Arbitrary Code
1001164.1201558102501 16-Jul-2006Security Vulnerability With Malformed XML Documents in StarOffice/ StarSuite
1001173.12015671015895766913-Apr-2006Security Vulnerabilities May Allow a Denial of Service in Sun Java System Web and Application Server Products
1001174.12015681015195758718-Apr-2006Solaris 9 Patches 112908-12 and 115168-03 WITHDRAWN, May Cause Passwords to be Logged as Clear Text on Kerberos Clients
1001181.1201575101913 07-Sep-2005Denial of Service Vunerabilities in Sun Java Web Proxy Server
1001186.12015811016875778028-Apr-2005NIS+ Client Users May Be Able to Cause a Denial of NIS+ Service
1001187.12015821016285771201-Mar-2005Security Vulnerability in Kerberos 5 Administration Library for Solaris/SEAM
1001190.12015851015555762811-Aug-2005Security Vulnerabilities in the Apache Web Server and Apache Modules
1001191.12015861007582360419-Jan-2010Potential Security Issue in ServerSocket.accept()
1001193.1201588101768 14-Jun-2005Security Vulnerability in the lpadmin(1M) Utility
1001195.1201590101910 30-Oct-2005Sun Java System Application Server May Disclose Source Code of Java Server Pages
1001197.1201592101770 28-Sep-2005Security Vulnerability in Webmail May Allow an Unprivileged User to Execute Arbitrary Code
1001201.12016011016115769124-Jan-2010Security Vulnerability in Webmail May Allow Unprivileged Users to Execute Arbitrary Code
1001203.12016031015595763219-Jan-2010Netscape NSS Library Vulnerability Affects Sun Java System Web Server and Sun Java System Application Server
1001205.12016061015475761724-Jan-2010Multiple Security Vulnerabilities in the Portable Network Graphics (PNG) Library libpng(3)
1001207.12016081015545762715-Aug-2004Buffer Overflow in the CDE Mailer dtmail(1X)
1001209.12016101015635763719-Jan-2010Security Vulnerabilities in QT Library May Allow a Remote Unprivileged User to Execute Arbitrary Code
1001210.12016111015695764519-Jan-2010Security Vulnerabilities in imlib Library May Allow a Remote Unprivileged User to Execute Arbitrary Code
1001212.12016151015325760028-Jun-2004The gzip(1) Command May Change the Permissions of Hard Linked Files on Solaris 8 Systems
1001213.12016161015315759920-May-2010ASN1 Decoder For Sun Java System Directory Server May Be Subject to Denial of Service (DoS)
1001216.12016231014205746419-Jan-2010Sun ONE Web Server Buffer Overflow Vulnerability May Result in "Denial of Service" (DoS)
1001223.12016361014115745409-Dec-2003Security Vulnerability Involving the passwd(1) Command
1001227.12016481016725776319-Jan-2010Buffer Overflow Vulnerabilities in Sun Java System Web Proxy Server 3.6
1001228.12016491016765776814-Apr-2005Multiple Security Vulnerabilities in Xsun and Xprt Server Font Handling
1001229.12016501015765765308-May-2005libXpm Security Vulnerabilities Affect the Motif Library (libXm)
1001233.12016561016415772711-Jan-2005Security Vulnerability in Solaris 8 DHCP Administration Utilities
1001235.1201658101864 10-Aug-2005Multiple Security Vulnerabilities in The "MySQL" Package
1001237.12016601015235759129-Aug-2005Security Vulnerability With Java Plug-in in JRE/SDK
1001242.12016691016515773813-Feb-2005Security Vulnerability in the "stfontserverd" Daemon
1001244.12016711016175769919-Jan-2010A Security Vulnerability in Sun Java System Web and Application Server May Allow Unprivileged Users the Ability to Access Session IDs
1001245.12016721016245770719-Jan-2010Java Runtime Environment Remote Denial-of-Service (DoS) Vulnerability
1001246.12016751016195770122-Dec-2004Multiple Security Vulnerabilities in Mozilla
1001247.12016771015755765205-Dec-2004Security Vulnerabilities in libXpm May Allow a Remote Unprivileged User to Execute Arbitrary Code
1001252.12016871015305759808-Jul-2004Security Vulnerability With Solaris Volume Manager (SVM)
1001257.12017041013145622024-Jan-2010Sun Linux 5.0 Security Vulnerability in "wu-ftpd" May Allow Unauthorized Root Access
1001262.12017101012955588224-Jan-2010Sun Linux 5.0 Denial of Service Vulnerability in "nfs-utils" Package Version 1.0.3 and Earlier
1001264.12017131014595751724-Jan-2010Sun Java System Application Server Denial-of-Service Vulnerability
1001267.12017181014645752419-Jan-2010Potential SSL Vulnerabilities in Sun Products
1001270.12017211014465749824-Jan-2010ASN.1 Parsing Issue May Lead to Denial-of-Service Condition in Sun Java System Web Server and Sun Java System Application Server
1001271.12017221014495750219-Jan-2010A Security Vulnerability in the Sun Cluster Global File System May Allow an Unprivileged Local User to Panic a Cluster Node
1001273.12017241014975756021-May-2010Java Secure Socket Extension (JSSE) May Incorrectly Validate Certificates
1001276.1201736102955 19-Aug-2007Security Vulnerability in JavaScript Engine in Mozilla 1.7 for Solaris 8, 9 and 10
1001277.1201737102622 13-Nov-2006A Security Vulnerability in the Java Runtime Environment Swing Library may Allow an Untrusted Applet to Access Data in Other Applets
1001282.1201742102803 30-May-2007Multiple Integer Overflow Vulnerabilities in the X Font Server (xfs(1)) and the X Render and DBE Extensions
1001284.1201744102881 29-Apr-2007Security Vulnerability With Java Web Start Related to Incorrect Use of System Classes
1001287.1201747102846 16-Apr-2007Security Vulnerability in the Mozilla js_dtoa() Routine May Result in Denial of Service
1001291.1201751102825 04-Mar-2007Two Security Vulnerabilities in PostgreSQL May Allow Denial of Service or Information Leakage
1001292.1201752102780 07-Mar-2007Two Integer Overflow Vulnerabilities Found in the Xorg(1) X Server
1001293.1201753102668 30-Jan-2007Security Vulnerabilities In OpenSSL Affect Sun Grid Engine 5.3 and N1 Grid Engine 6.0
1001294.1201754102724 30-Jan-2007Security Vulnerabilities in Solaris ld.so.1(1) may Lead to Execution of Arbitrary Code with Elevated Privileges
1001308.1201769102343 27-Jul-2006Potential Kernel Memory Disclosure Vulnerability in the Solaris sysinfo(2) System Call
1001313.1201774102490 19-Jul-2006Security Vulnerability With Macros in StarOffice/StarSuite
1001314.1201775102475 19-Jul-2006Security Vulnerability With Java Applets in StarOffice/StarSuite
1001316.12017771008812752501-Nov-2006Possible Security Issue with XView Text Clipboard
1001317.1201778102510 05-Oct-2006Security Vulnerability May Allow the syslog(3C) Service to be Disabled
1001318.12017801016585774606-Dec-2006Sun TCP Connections May Experience Performance Degradation If Certain ICMP Error Messages Are Received
1001319.1201781102514 06-Nov-2006Security Vulnerability May Allow Users With the "File System Management" RBAC Profile to Gain Elevated Privileges
1001321.1201783102650 14-May-2010Cross-site Scripting Vulnerabilities in the Sun Secure Global Desktop Software
1001323.1201785102461 26-Jul-2006Systems With Sun Java Enterprise System Installed May Hang Due to a Memory Leak in the Network Security Services (NSS) Software
1001325.1201787102321 27-Jul-2006Incomplete Authentication and Authorization in Sun Grid Engine 5.3 and N1 Grid Engine 6.0 Certificate Security Protocol (CSP) Mode
1001328.1201790102252 21-May-2006Security Vulnerabilities found in the Xorg(1) X11R6.9 and X11R7.0 Server
1001329.1201791102339 22-May-2006Security Vulnerability in the Xorg(1) Version of the Render Extension
1001330.1201792101933 20-Apr-2006Security Vulnerabilities in uucp(1C) and uustat(1C)
1001331.1201793102122 20-Apr-2006Security Vulnerability in PC Netlink 2.0 "slsmgr" May Allow Files to be Opened Insecurely
1001337.1201799101809 31-Jan-2006Security Vulnerabilities in the Kerberos Key Distribution Center (KDC) Daemon
1001338.12018001015125758001-Feb-2006Solaris/SEAM Kerberos 5 Vulnerability Due To Buffer Overflows In krb5_aname_to_localname()
1001341.1201803101776 19-Mar-2006Security Vulnerabilities in The "libgdk_pixbuf" Library May Allow a Remote Unprivileged User the ability to Execute Arbitrary Code
1001423.12019221010554550823-Jun-2003OpenSSH-2.9p2-12C4 May Allow root Exploit in Sun Cobalt RaQ 550
1001424.12019241009254052115-Jul-2003Anonymous FTP Sessions are not Audited When the Basic Security Module (BSM) is Used
1001428.12019311013705736012-Oct-2003Security Vulnerability on Sun Systems With a PGX32 Frame Buffer
1001430.12019331012685538015-Jun-2003Solaris 8 LDAP Clients May Log the Proxy Agent User's Password as Clear Text
1001432.12019351012705544018-Jun-2003syslogd(1M) Does Not Properly Handle Large syslog(3C) Packets and May Allow an Unprivileged User to Cause a Denial of Service
1017334.1228387102512 02-Aug-2006Local Users May be Able to Hang Systems That Have Loaded The Kernel Debugger kmdb(1)
1017335.1228388101895 11-Oct-2005A Security Vulnerability in Solaris 10 May Allow a Local Unprivileged User the Ability to Panic the System
1017342.1228397102945 03-Sep-2007Security Vulnerabilities in the Network Security Services (NSS) Library May Affect Sun Java System Application Server, Web Server and Web Proxy Server
1017347.1228406103021 29-Jul-2007Solaris 10 Systems May Panic or Hang When Running Certain DTrace D Programs
1017349.1228408102563 25-Sep-2006A Remote SSL Client May be Able to Cause a Denial of Service (DoS) of a Solaris 10 System Running a Kernel SSL Service Instance
1017350.1228409102930 12-Aug-2007Security Vulnerability in the Kerberos kadm5 Library May Allow Execution of Arbitrary Code
1017352.12284111014125745509-Dec-2003Security Issue Involving the tcsh(1) ls-F builtin on Solaris 8
1017357.1228419102002 13-Mar-2008Security Vulnerability in the Sun ONE and Sun Java System Directory Server's and the Sun Java System Directory Proxy Server's HTTP Administrative Interface
1017359.12284231015955767502-Nov-2004Security Vulnerability in ping(1M)
1017423.1228520102867 04-Apr-2007Security Vulnerability in the SEAM Kerberized telnetd(1M) Daemon May Allow Unauthorized Remote Users to Gain Access to a Solaris Host
1017424.12285211012155238816-Apr-2003Security Vulnerability with /usr/dt/bin/dtsession
1017426.1228524102714 08-Mar-2007Security Vulnerability With Integer Multiplication Within libXfont Affects Solaris X11 Servers
1017427.1228525102485 02-Aug-2006Security Vulnerabilities in The Solaris Event Port API May Result in a Denial of Service (DoS) Condition
1017428.1228526102550 10-Sep-2008Multiple Security Vulnerabilities in Mozilla 1.4 and 1.7 for Solaris and for Sun JDS for Linux
1017429.12285291012795560219-Jan-2010Sun Linux 5.0 Security Vulnerabilities in XFree86 Packages
1017430.12285321009974354116-Apr-2003Security issue with zlib (libz(3)) in Solaris and OpenWindows and GNOME
1017433.1228536102246 22-May-2006A Security Vulnerability in the "libike" Library May Potentially Cause a Denial of Service to the in.iked(1M) Daemon
1017440.12285441014055744304-Dec-2003Text Editor ed(1) Creates Temporary Files in an Unsafe Manner
1017443.1228547102197 14-Aug-2006Security Vulnerabilities in the Apache 1.3 Web Server
1017444.1228548101948 05-Nov-2006Security Vulnerability in Sun Java System Communications Express Software
1017448.12285541011855092218-Feb-2003rpcbind(1M) May be Terminated by Unprivileged Client Applications, Leading to Denial of RPC Services
1017451.1228557102658 11-Jan-2007Security Vulnerability in the Netscape Portable Runtime (NSPR) API Affects Solaris
1018535.1230213101926 25-Sep-2007Security Vulnerability in the Xsun(1) and Xorg(1) Servers
1018932.1230788102170 06-Nov-2006Security Vulnerability With Java Web Start
1018933.1230789102050 07-Nov-2006Security Vulnerability With Java Runtime Environment May Allow Untrusted Applet to Elevate Privileges
1018934.1230790101748 12-Jun-2005Security Vulnerability With Java Web Start
1018935.1230791101749 12-Jun-2005Security Vulnerability With Java Runtime Environment May Allow Untrusted Applet to Elevate Privileges
1018961.1230901  19-Jan-2010Security Vulnerability in the Solaris X Server May Lead to Unauthorized Disclosure of Information on Access Restricted Files and Directories
1018965.1231244  19-Jan-2010Some Sun SPARC Enterprise T5120 and T5220 Servers Shipped With an Incorrect Solaris 10 Image Containing an Insecure Configuration
1018967.1231246  29-Jan-2008A Vulnerability in the Java Runtime Environment XML Parsing Code May Allow URL Resources to be Accessed
1018968.1231261  04-Feb-2008Two Vulnerabilities in the Java Runtime Environment May Independently Allow an Untrusted Application or Applet to Elevate Privileges
1018970.1231321  19-Jan-2010Security Vulnerabilities in ImageMagick May Lead to Arbitrary Code Execution or Denial of Service (DoS)
1018975.1231402  17-Sep-2010Denial of Service Vulnerabilities in ldap_cachemgr(1M) Daemon
1018976.1231403  10-Mar-2008A Security Vulnerability Relating to Inter-Process Communication (IPC) May Lead to a Denial of Service (DoS)
1018977.1231441  24-Jan-2010Multiple Security Vulnerabilities in Solaris 10 Firefox and Thunderbird
1018980.1231466  13-Feb-2008Two Security Vulnerabilities Exist Within the cpc(3CPC) Sub-System of the Solaris Kernel
1018981.1231467  19-Jan-2010Cross-Site Scripting Vulnerability in Sun Java System Web Server Search Module
1018985.1231524  24-Jan-2010Security Vulnerability in Solaris 10 Perl 5.8
1018987.1231526  19-Jan-2010Security Vulnerability in Sun Java Web Console
1018994.1231601  19-Jan-2010Security Vulnerability With Quattro Pro Files in StarOffice 8/StarSuite 8
1018996.1231641  19-Jan-2010Security Vulnerability for ODF Text Documents Containing XForms in StarOffice 8/StarSuite 8
1018997.1231642  19-Jan-2010Security Vulnerability for OLE Files in StarOffice 7 and 8, StarSuite 7 and 8
1018998.1231661  19-Jan-2010Manipulated EMF Files May Lead to Heap Overflows and Arbitrary Code Execution
1019007.1231803  27-Apr-2008Security Vulnerability in the Solaris 10 DTrace Dynamic Tracing Framework May Allow Unauthorized Kernel Level Tracing
1019015.1233284  27-Apr-2008Security Vulnerability in inetd(1M) Daemon When Debug Logging is Enabled
1019016.1233321  19-Jan-2010Two Security Vulnerabilities in the Java Runtime Environment Virtual Machine
1019017.1233322  19-Jan-2010Security Vulnerability in the Java Runtime Environment With the Processing of XSLT Transformations
1019018.1233323  19-Jan-2010Multiple Security Vulnerabilities in Java Web Start May Allow an Untrusted Application to Elevate Privileges
1019019.1233324  19-Jan-2010A Security Vulnerability in the Java Plug-in May Allow an Untrusted Applet to Elevate Privileges
1019020.1233325  19-Jan-2010Vulnerabilties in the Java Runtime Environment image Parsing Library
1019021.1233326  19-Jan-2010Security Vulnerability in the Java Runtime Environment May Allow Untrusted JavaScript Code to Elevate Privileges Through Java APIs
1019022.1233327  19-Jan-2010Buffer Overflow Vulnerability in Java Web Start May Allow an Untrusted Application to Elevate its Privileges
1019033.1233561  19-Jan-2010Cross Site Scripting (XSS) Vulnerability in Sun Java Server Faces (JSF) Input Handling Routines May Lead to Elevation of Privileges
1019040.1233623  19-Jan-2010Cross Site Scripting (XSS) Vulnerabilities in the Apache 1.3 and 2.0 "mod_imap" and "mod_status" Modules
1019048.1233761  27-Feb-2008Security Vulnerability in the ipsecah(7P) Kernel Module May Lead to System Panic
1019056.1233921  19-Jan-2010A Security Vulnerability in Floating Point Context Switch Implementation May Result in a Denial of Service (DoS) or Data Integrity Issues
1019057.1233922  19-Jan-2010Multiple Security Vulnerabilities in ICU 3.2 Library Regular Expression Processing May Cause a Denial of Service (DoS)
1019070.1234302  24-Jan-2010Security Sun Alert Archive Reference for Year 2002
1019071.1234303  24-Jan-2010Security Sun Alert Archive Reference for Year 2001
1019072.1234304  24-Jan-2010Security Sun Alert Archive Reference for Year 2000
1019091.1234661  11-Mar-2008Security Vulnerability in the Solaris 10 Java Desktop System (JDS) XscreenSaver(1) Application May Allow Unauthorized Access to Data
1019093.1234701  17-Mar-2008A Security Vulnerability in Solaris 10 libexif May Allow Code Execution or a Denial of Service (DoS) Condition
1019100.1234822  27-Apr-2008A Security Vulnerability in The N1 Grid Engine 6.1 Qmaster Daemon May Lead to a Denial of Service (DoS)
1019116.1235122  10-Jun-2008Vulnerability in the Solaris 10 Event Port Implementation May Lead to a System Panic, Resulting in a Denial of Service (DoS)
1019128.1235381  19-Jan-2010Security Vulnerability in Sun Java System Directory Proxy Server May Grant Unauthorized Administrative Access
1019129.1235421  04-Jun-2008Security Vulnerability in Solaris 10 Trusted Extensions Labeled Networking Related to Data Transfer Between Labeled Zones
1019132.1235521  24-Jan-2010A Security Vulnerability in Sun Java System Calendar Server May Allow Denial of Service (DoS) When Access Logging is Enabled
1019145.1235901  02-Apr-2008A Security Vulnerability in the Handling of Self Encapsulated IP Packets may Lead to a Denial of Service (DOS) Condition.
1019153.1236141  07-Apr-2008Security Vulnerabilities in the GNU Zebra and Quagga BGP Routing Daemon May Allow for Denial of Service
1019164.1236321  22-May-2008A Security Vulnerability in Solaris 10 Involving the SCTP Protocol May Result in a Panic and Denial of Service (DoS)
1019174.1236481  19-Jan-2010Cross-Site Scripting Vulnerability in the Sun Java System Web Server Advanced Search Mechanism
1019177.1236521  01-May-2008A Security Vulnerability in Solaris 10 Involving the SCTP Protocol May Result in a Denial of Network Services Due to Network Flooding
1019188.1236703  29-Jun-2008Multiple Security Vulnerabilities May Affect MySQL 4.0.x Bundled With Solaris 10
1019199.1236884  19-Jan-2010Security Vulnerabilities in Solaris Print Service May Lead to Denial of Service (DoS) or Execution of Arbitrary Code
1019202.1236944  19-Jan-2010A Security Vulnerability in Sun Ray Kiosk Mode 4.0 May Allow Escalation of Privileges
1019235.1237444  20-Jan-2010Security Vulnerability in Solaris SSH May Allow Unauthorized Access to X11 Sessions
1019237.1237465  19-Jan-2010Security Vulnerabilities in the Tcl GUI Toolkit Library may lead to arbitrary code execution or Denial of Service (DoS)
1019244.1237584  19-May-2008A Security Vulnerability in the Solaris 10 STREAMS Administrative Driver ("sad") May Allow a Denial of Service (System panic)
1019254.1237764  19-Jan-2010Two Security Vulnerabilities in samba(7) WINS Server Daemon (nmbd) May Allow Execution of Arbitrary Code or Lead to a Denial of Service (DoS) Condition
1019260.1237864  19-Jan-2010A Security Vulnerability in the Solaris crontab(1) utility may allow execution of Arbitrary Code
1019264.1237944  19-Jan-2010A Security Vulnerability in StarOffice/StarSuite 8 may allow file manipulation and Arbitrary Code execution
1019266.1237965  19-Jan-2010A Security Vulnerability in IP Multicast Filter processing of Sockets may lead to a system panic or possible execution of Arbitrary Code
1019267.1237985  19-Jan-2010A Security Vulnerability in the Solaris snmpXdmid(1M) may lead to a Denial of Service (DoS) condition
1019268.1237986  19-Jan-2010A Security Vulnerability in the namefs Kernel module may result in Arbitrary Code Execution or a Denial of Service (DoS)
1019269.1237987  16-Sep-2008Manipulated Tag Files used with Solaris Text Editors May Lead to Execution of Arbitrary Code
1019285.1238184  19-Jan-2010Multiple Security Vulnerabilities in Sun Java ASP Server may lead to execution of Arbitrary Code or Unauthorized Access to Data
1019294.1238250  19-Jan-2010Denial of Service (DoS) Vulnerability in the Solaris e1000g(7D) Gigabit Ethernet Driver
1019295.1238251  19-Jan-2010A Security Vulnerability in samba(7) Domain logons may allow execution of Arbitrary code with Root privileges
1019300.1238305  01-Jun-2008Multiple Security Vulnerabilities in Flash Player for Solaris
1019305.1238365  19-Jan-2010A Security Vulnerability in rpc.ypupdated(1M) May Allow Execution of Arbitrary Code When Run in Insecure Mode
1019316.1238414  20-May-2010Security Vulnerability in Service Tag Registry May Allow Denial of Service
1019317.1238416  23-Dec-2008A Vulnerability in Access Manager 7.1 may Allow Unauthorized Access to Resources
1019327.1238492  19-Jan-2010Multiple Security Vulnerabilities in Solaris 10 Firefox may Allow Execution of Arbitrary Code and Access to Unauthorized Data
1019328.1238493  19-Jan-2010Security Vulnerability in inet_network() Library Routine May Allow Denial of Service (DoS) to Applications
1019338.1238628  19-Jan-2010Security Vulnerabilities in the Java Runtime Environment related to the processing of XML Data
1019342.1238666  19-Jan-2010A Security Vulnerability with the processing of fonts in the Java Runtime Environment may allow Elevation of Privileges
1019343.1238686  19-Jan-2010Multiple Security Vulnerabilities in the Solaris X Server Extensions May lead to a Denial of Service (DoS) Condition or Allow Execution of Arbitrary Code
1019344.1238687  19-Jan-2010Security Vulnerabilities in the Java Runtime Environment Scripting Language Support
1019345.1238688  19-Jan-2010Kernel Security Vulnerability on Solaris Systems Using the Sun UltraSPARC T2 and UltraSPARC T2+ Processors May Allow Denial of Service (DoS)
1019363.1238865  19-Jan-2010SNMPv3 Authentication Bypass Vulnerability in snmpd(1M)
1019367.1238905  19-Jan-2010Multiple Security Vulnerabilities in Java Web Start may allow Privileges to be Elevated
1019373.1238965  19-Jan-2010Security Vulnerability in Java Management Extensions (JMX)
1019374.1238966  19-Jan-2010Security Vulnerability in JDK/JRE Secure Static Versioning
1019375.1238967  19-Jan-2010Security Vulnerability in the Java Runtime Environment Virtual Machine may allow an untrusted Application or Applet to Elevate Privileges
1019376.1238968  24-Jan-2010Security Vulnerabilities in the Java Runtime Environment may allow Same Origin Policy to be Bypassed
1019380.1239006  19-Jan-2010Multiple Security Vulnerabilities in the FreeType2 library for Printer Font Binary (PFB) or TrueType Font (TTF) format font files may lead to a Denial of Service (DoS) or allow Execution of Arbitrary Code
1019395.1239186  26-Aug-2008A Security Vulnerability in Solaris 10 involving the sendfilev() system call could result in Denial of Service (DoS) due to System Panic
1019397.1239188  19-Jan-2009Security Vulnerability Relating to the posix_fallocate(3C) System Call May Lead to a Denial of Service (DoS)
1019406.1239286  31-Jul-2008Multiple Security Vulnerabilities in the Adobe Reader may lead to Execution of Arbitrary Code
1019409.1239308  14-Aug-2008Cross Site Scripting (XSS) Vulnerability in Sun Java System Portal Server's Portlets may Lead to Execution of Arbitrary Code
1019412.1239312  04-Sep-2008Security Vulnerabilities in Tomcat 4.0 Shipped with Solaris 9 and 10
1019415.1239387  04-Aug-2008Security Vulnerabilities in the Solaris Priority Inherited pthread mutex API May Result in a Denial of Service (DoS) Condition
1019420.1239392  20-Aug-2009Security Vulnerability in the DNS Protocol May Lead to DNS Cache Poisoning
1019430.1239546  19-Jan-2010Security Vulnerabilities in Thunderbird for Solaris May Result in Privilege Escalation or Cross-Site Scripting (XSS)
1019431.1239566  29-Jul-2008Security Vulnerability in Sun Java System Web Server 7.0 plugin for Sun N1 Service Provisioning System (SPS)
1019442.1239728  29-Jul-2008A Security Vulnerability in picld(1M) May Allow a Denial of Service to System Monitoring and System Services
1019452.1239785  29-Jul-2008Security Vulnerability in the System Management Agent (SMA) SNMP daemon (snmpd(1M))
1019460.1239886  27-Jan-2009Security Vulnerabilities in the Embedded Lights Out Manager (ELOM) on Sun Fire X2100 M2 and X2200 M2 May Allow Unauthorized Logins
1019464.1239908  29-Sep-2008Security Vulnerability in VERITAS (Symantec) NetBackup 6.0/6.5 GUI
1019470.1239930  27-Aug-2008Security Vulnerability in Firmware for T5220, T5140 and T5240 Systems May Allow a Denial of Service (DoS)
1019479.1240048  07-Aug-2008DUPLICATE of Sun Alert 239392 - Security Vulnerability in the DNS Protocol may lead to DNS Cache Poisoning
1019486.1240086  27-Jan-2009A Security Vulnerability in the Solaris ip(7P) Kernel Module's IP-in-IP Packet Processing May Lead to a Denial of Service (DoS)
1019492.1240095  19-Jan-2010A Security Vulnerability in 'VBoxDrv.sys' driver of Sun xVM VirtualBox 1.6 may lead to Arbitrary Code Execution or Denial of Service (DoS)
1019496.1240099  06-Aug-2008Security Vulnerability in Solaris Trusted Extensions Labeled Networking may lead to remote unauthorized access to the Global Zone (zones(5)) of the System
1019497.1240101  04-Aug-2008Security Vulnerability in Solaris snoop(1M) when Displaying SMB Traffic
1019499.1240106  10-Sep-2008Multiple Security Vulnerabilities in the Adobe Reader may lead to Execution of Arbitrary Code and Overwrite Arbitrary Files
1019510.1240327  12-Aug-2008A Security Vulnerability in the ftp Subsystem of Sun Java System Web Proxy Server 4.0 May Lead to a Denial of Service (DoS)
1019513.1240365  04-Dec-2008Security Vulnerability in Sun Ray Server Software May Compromise the Sun Ray Administration Password
1019522.1240506  19-Jan-2010Security Vulnerabilities in Sun Ray Server Software and Sun Ray Windows Connector May Compromise the Sun Ray Administration Password
1019524.1240546  17-Aug-2008Denial of Service Vulnerability in NFSv4 Client Kernel Module
1019535.1240706  27-Aug-2008Covert Channel Security Vulnerability in the Solaris Kernel
1019536.1240708  15-Sep-2008Multiple Security Vulnerabilities in rdesktop May Lead to Execution of Arbitrary Code or Denial of Service (DOS)
1019543.1240866  01-Sep-2008Security Vulnerability in Solaris 10 NFS Remote Procedure Calls (RPCs) May Allow a Denial of Service (DoS) or Data Integrity Issues for Non-Global Zones
1019556.1241066  26-Aug-2008A Security Vulnerability in the Solaris NFS Kernel Module May Lead to a System Panic, Resulting in a Denial of Service (DoS)
1019559.1241126  14-Dec-2008A Security Vulnerability in IPv4 Forwarding may Allow a Remote User to Panic the System
1019583.1241646  29-Apr-2009Security Vulnerability in GNU tar May Lead to Arbitrary Code Execution or Denial of Service (DoS)
1019585.1241686  14-Sep-2008A Security Vulnerability within the SunMC PRM Web Page may result in a Denial of Service (DoS)
1019589.1241786  11-Sep-2008A Security Vulnerability in the bzip2(1) command may lead to a Denial of Service (DoS)
1019601.1242006  04-Jan-2009A Security Vulnerability in the Solaris Name Service Cache Daemon (nscd(1M)) May Allow Unauthorized Access to Data and Escalation of Privileges
1019602.1242026  19-Jan-2010A Security Vulnerability in Sun Java System Access Manager May Allow a Remote Unprivileged User to Determine the Existence of "guessed" Usernames
1019607.1242166  11-Jan-2009Security Vulnerability in Sun Java System Access Manager May Allow Unauthorized Access Through Revealed Passwords
1019608.1242186  24-Jan-2010Cross-Site Scripting (XSS) Vulnerability in Sun Java Messaging Server
1019611.1242246  22-Oct-2008Security Vulnerability in the Search Feature of the Sun Java System LDAP JDK
1019612.1242266  08-Jan-2009Security Vulnerability in Solaris IP Tunnel Parameter Processing May Lead to a System Panic or Possible Execution of Arbitrary Code by Unprivileged Users
1019613.1242267  02-Jun-2009Security Vulnerability in the ACL (acl(2)) Implementation for UFS File Systems May Allow a Local User to Panic the System
1019619.1242386  20-May-2010This Alert covers CVE-2010-0890 for the kernel component of the Solaris and OpenSolaris products.
1019623.1242486  09-Mar-2009Multiple Security Issues in the Doors Kernel Functionality
1019632.1242627  16-Jul-2009Security Vulnerability in StarOffice Related to .wmf Files May Lead to Heap Overflows and Arbitrary Code Execution
1019643.1242806  12-Nov-2008A Security Vulnerability in the Solaris Socket(3SOCKET) Function May Allow Unprivileged Users to Panic the System
1019652.1242986  26-Aug-2010A Heap Overflow Security Vulnerability in the Sun Java Web Proxy Server
1019658.1243106  06-Nov-2008Security Vulnerability in Solstice X.25 May Allow Denial of Service (DoS)
1019663.1243226  16-Jul-2009Security Vulnerability in StarOffice/StarSuite Related to EMF Files May Lead to Heap Overflows and Arbitrary Code Execution
1019669.1243386  19-Jan-2010Multiple Security Vulnerabilities in Sun Java System Identity Manager
1019673.1243486  09-Nov-2008A Security Vulnerability in the Sun Integrated Lights-Out Manager (ILOM) may Allow Unauthorized Access Through the Web Interface
1019677.1243566  11-Dec-2008Security Vulnerability in the X Inter Client Exchange Library (libICE) Shipped With Solaris May Allow a Denial of Service (DoS)
1019678.1243606  19-Jan-2010A Security Vulnerability in the Logical Domains (LDoms) Manager May Allow Unauthorized System Access and Escalation of Privileges
1019686.1243786  01-Dec-2008Security Vulnerability in the Sun Java Web Console May Allow Unauthorized Redirection
1019687.1243806  06-Nov-2008Security Vulnerabilities in DHCP Handling of DHCP Requests May Allow Remote Users to Execute Arbitrary Code or Cause a Denial of the DHCP Service
1019689.1243886  04-Dec-2008Security Vulnerability Related to Sun Java System Portal Server May Allow Information Disclosure
1019696.1244026  04-Feb-2009Security Vulnerability in the Process File System (proc(4)) Relating to Contract File System (contract(4)) Interaction May Lead to a System Panic or Possible Execution of Arbitrary Code by Unprivileged Users
1019731.1244826  19-Jan-2010A Security Vulnerability in the Sun System Firmware on Certain SPARC Systems May Allow Unauthorized Data Access
1019733.1244866  10-Dec-2008A Security Vulnerability in the Management of Solaris Kerberos (see kerberos(5)) may Lead to a User Denial of Service (DoS) Attack
1019736.1244986  19-Jan-2010The Java Runtime Environment Creates Temporary Files That Have "Guessable" File Names
1019737.1244987  19-Jan-2010Java Runtime Environment (JRE) Buffer Overflow Vulnerabilities in Processing Image Files and Fonts May Allow Applets or Java Web Start Applications to Elevate Their Privileges
1019738.1244988  19-Jan-2010Multiple Security Vulnerabilities in Java Web Start and Java Plug-in May Allow Privilege Escalation
1019739.1244989  19-Jan-2010The Java Runtime Environment (JRE) "Java Update" Mechanism Does Not Check the Digital Signature of the JRE that it Downloads
1019740.1244990  19-Jan-2010A Buffer Overflow Vulnerability in the Java Runtime Environment (JRE) May Allow Privileges to be Escalated
1019741.1244991  19-Jan-2010A Security Vulnerability in the Java Runtime Environment (JRE) Related to Deserializing Calendar Objects May Allow Privileges to be Escalated
1019742.1244992  19-Jan-2010A Buffer Overflow Vulnerability in the Java Runtime Environment (JRE) "Unpack200" JAR Unpacking Utility May Lead to Escalation of Privileges
1019756.1245206  10-Nov-2008Security Vulnerability in Solaris IP Filter Network Address Translation (NAT) May Lead to DNS Cache Poisoning
1019759.1245246  20-Jan-2010The Java Runtime Environment UTF-8 Decoder May Allow Multiple Representations of UTF-8 Input
1019765.1245446  19-Jan-2010A Security Vulnerability in Sun Java System Application Server May Expose an Application's WEB-INF and META-INF Content
1019777.1245806  21-May-2009A Buffer Overflow Security Vulnerability in the Solaris sadmind(1M) Daemon May Lead to Execution of Arbitrary Code
1019779.1245846  13-Nov-2008A Security Vulnerability in the Solaris i915 DRM Driver May Cause a Kernel Panic
1019793.1246266  20-Jan-2010Security Vulnerability in Java Runtime Environment May Allow Applets to List the Contents of the Current User's Home Directory
1019794.1246286  20-Jan-2010Security Vulnerability in the Java Runtime Environment With Processing RSA Public Keys
1019797.1246346  03-Feb-2010A Security Vulnerability in Java Runtime Environment (JRE) With Authenticating Users Through Kerberos May Lead to a Denial of Service (DoS)
1019798.1246366  20-Jan-2010Security Vulnerabilities in the Java Runtime Environment (JRE) JAX-WS and JAXB Packages may Allow Privileges to be Escalated
1019799.1246386  20-Jan-2010A Security Vulnerability in Java Runtime Environment (JRE) With Parsing of Zip Files May Allow Reading of Arbitrary Memory Locations
1019800.1246387  20-Jan-2010A Security Vulnerability in the Java Runtime Environment may Allow Code Loaded From the Local Filesystem to Access LocalHost
1019814.1246746  06-Jul-2010An IP(7P) Spoofing Security Vulnerability in Mid-range Sun Fire Server's Firmware May Allow Unauthorized Access to System Controllers
1019819.1246846  02-Dec-2008A Security Vulnerability in the OpenSSL PKCS#11 Engine May Result in Denial of Service (DoS) Due to a Corrupted Session Cache
1019828.1247046  03-Mar-2009Cross Site Scripting (XSS) Vulnerability in Sun Management Center (SunMC) Performance Reporting Module
1019833.1247186  01-Apr-2009A Security Vulnerability in Solaris Secure Shell (SSH) May Expose Some Plain Text From Encrypted Traffic
1019839.1247326  19-Jan-2010Insecure Temporary File Creation Security Vulnerability in Sun xVM VirtualBox
1019840.1247346  14-Jan-2009A Security Vulnerability in the libxml2 Library May Lead to Denial of Service (DoS)
1019842.1247386  05-Nov-2010Part II - Multiple Printing Regressions in Solaris 10 Kernel Patches 127127-11 and 127128-11
1019843.1247406  20-Apr-2009Security Vulnerability with IKE Packet Handling in Solaris libike Library may Lead to a Crash of in.iked(1M)
1019851.1247566  20-May-2010Buffer Overflow Vulnerabilities in Sun Java Wireless Toolkit for CLDC may Allow an Application to Escalate Privileges
1019856.1247666  16-Dec-2008Security Vulnerabilities in the Apache 2.0 "mod_proxy_http" and "mod_proxy_ftp" Modules may Lead to Denial of Service (DoS) or Cross Site Scripting (XSS)
1019873.1247986  11-Jan-2009Security Vulnerability in aio_suspend(3RT) May Lead to a System Panic, Resulting in a Denial of Service (DoS)
1019875.1248026  29-Jan-2009Security Vulnerability in the Solaris IP(7p) Implementation, Related to Minor Number Allocation, may Lead to a Denial of Service (DoS) Condition
1019892.1248386  31-Aug-2009Security vulnerability in Solaris Related to the Apache 1.3 mod_perl(3) Module Component "PerlRun.pm" may Lead to Denial of Service (DoS)
1019901.1248526  11-Jan-2009A Security Vulnerability in the vncviewer(1) RFB Protocol Validation May Allow Execution of Arbitrary Code and Lead to a Denial of Service (DoS)
1019903.1248566  04-Jan-2009A Security Vulnerability in the NFS Version 4 Client Within Solaris May Lead to a System Panic
1019904.1248586  11-Jan-2009Multiple Security Vulnerabilities in the Flash Player Plugin for Solaris
1019907.1248646  23-Dec-2008Insecure Temporary File Usage Vulnerability in Sun SNMP Management Agent
1019908.1248666  20-May-2010This Alert Covers CVE-2010-0891 for the Sun Management Center Product
1019923.1249086  11-Jan-2009Security Vulnerability in samba(7) Specially Crafted Packet May Allow Execution of Arbitrary Code With Root Privileges
1019924.1249087  01-Feb-2009Security Vulnerability in samba(7) Specially Crafted Packet May Expose Arbitrary Buffer of Data
1019925.1249106  11-Jan-2009A Security Vulnerability in Sun Java System Access Manager May Allow Privilege Escalation of Sub-Realm Administrators
1019926.1249126  20-Jan-2009Incorrect Software Setting Prior to Shipping on Certain Sun SPARC M4000/M5000 Servers May Allow Unauthorized Access
1019927.1249146  05-May-2009The Solaris rpc.metad(1M) Daemon is Vulnerable to a Denial of Service (DoS) Attack
1019934.1249306  12-Jan-2009Security Vulnerabilities in the Solaris lpadmin(1M) and ppdmgr(1M) Utilities May Lead to a Denial of Service (DoS) Condition
1019937.1249366  02-Apr-2009Multiple Security Vulnerabilities in the Adobe Reader May Lead to Execution of Arbitrary Code
1019948.1249586  21-Jan-2009Security Vulnerability in the Solaris Pseudo-terminal Driver (pty(7D)) may Cause a System Panic
1019951.1249646  21-Sep-2009A Security Vulnerability in xscreensaver(1) May Display Portions of a Locked Desktop if the Screen is Resized
1019965.1249926  15-Mar-2009A Security Vulnerability in Kerberos Incremental Propagation May Lead to a Denial of Service (DoS) Against Slave KDC Systems
1019967.1249966  01-Feb-2009Security Vulnerability in the Solaris "autofs" Kernel Module may Allow a Local Unprivileged User to Execute Arbitrary Code
1019972.1250066  23-Mar-2009A Solaris Kernel Security Vulnerability on Systems Using the Sun UltraSPARC T2 and T2+ Processors May Allow Denial of Service (DoS)
1019973.1250086  19-Jan-2010A Security Vulnerability in Sun Java System Directory Server May Allow Specific Requests to Crash the Directory Server Causing a Denial of Service (DoS)
1019986.1250306  08-Mar-2009A Security Vulnerability in the Solaris NFS Daemon (nfsd(1M)) May Allow Unauthorized Access to Data
1020011.1250826  14-Apr-2009Security Vulnerability in OpenSSL due to Improper Usage of Signature
1020012.1250846  12-Mar-2009Security Vulnerability in Solaris BIND named(1M) due to Incorrect DNSSEC Signature Verification
1020022.1251006  02-Apr-2009A Security Vulnerability in Solaris IPv6 Implementation (ip6(7p)) May Cause a System Panic
1020026.1251086  11-Feb-2009A Security Vulnerability in the Sun Java System Server, Related to the Directory Proxy Server, May Lead to a Denial of Service (DoS) Condition
1020044.1251406  08-Feb-2009Security Vulnerabilities in the libxml2 Library Routines xmlBufferResize() and xmlSAX2Characters() May Lead to Arbitrary Code Execution or Denial of Service (DoS)
1020086.1251986  24-Feb-2009Security Vulnerabilities in Tomcat 5.5 may Lead to Cross Site Scripting (XSS) or Directory Traversal
1020099.1252226  14-Jul-2009A Security Vulnerability in Sun Ray Server Software may Allow Unauthorized Manipulation of Sessions
1020111.1252469  05-Mar-2009Denial of Service (DoS) Vulnerability in NFSv4 Server Kernel Module
1020129.1252767  20-May-2009A Security Vulnerability in the Solaris Kerberos PAM Module May Allow Use of a User Specified Kerberos Configuration File, Leading to Escalation of Privileges
1020130.1252787  28-Jul-2009A Security Vulnerability in Solaris Kerberos Credential Management May Lead to Unauthorized Access of Kerberized NFS Mount Points
1020159.1253267  19-Jan-2010Sun Java System Identity Manager Security Vulnerabilities
1020160.1253287  15-Apr-2009Security Vulnerability in the VERITAS (Symantec) NetBackup Network Daemon may Allow Escalation of Privileges
1020168.1253468  31-Mar-2009A Security Vulnerability in the Solaris dircmp(1) Shell Script may Allow Overwriting of Arbitrary Files
1020172.1253568  12-Mar-2009Security Vulnerability in the Solaris keysock Kernel Module may Lead to a System Panic
1020173.1253588  29-Mar-2009Security Vulnerability in the Solaris NFS Server Security Modes (nfssec(5)) may Lead to Unauthorized Access to Shared Resources
1020175.1253608  14-Jul-2009A Security Vulnerability in the Solaris SCTP Packet Processing may Lead to a System Panic Resulting in a Denial of Service (DoS)
1020190.1253889  14-Jul-2009Two Security Vulnerabilities in Sun Ray Server Software 4.0 on Systems with Trusted Extensions Enabled May Allow either a Denial of Service (DoS) of the Audio Service or Unauthorized Access to Other Users' Sessions
1020200.1254088  03-Mar-2009A Security Vulnerability With the Solaris Crypto Driver May Cause a System Panic
1020206.1254208  04-Mar-2009A Security Vulnerability in the xterm(1) program Delivered With OpenSolaris Involving the Parsing of Device Control Request Status String (DECRQSS) Sequences May Lead to Execution of Arbitrary Code
1020223.1254568  20-Jan-2010Security Vulnerability in Sun xVM VirtualBox for the Linux Platform may Lead to Escalation of Privileges
1020224.1254569  20-Jan-2010Security Vulnerabilities in the Java Runtime Environment (JRE) LDAP Implementation may Allow a Denial of Service (DoS) and Malicious Code to be Executed
1020225.1254570  20-Jan-2010Integer and Buffer Overflow Vulnerabilities in the Java Runtime Environment (JRE) "unpack200" JAR Unpacking Utility May Lead to Escalation of Privileges
1020226.1254571  20-Jan-2010Buffer Overflow Vulnerabilities in the Java Runtime Environment (JRE) with Processing Image Files and Fonts may Allow Privileges to be Escalated
1020228.1254608  19-Jan-2010Security Vulnerabilities in the Java Runtime Environment (JRE) With Storing and Processing Font Files May Allow Denial of Service (DOS)
1020229.1254609  19-Jan-2010A Security Vulnerability in the Java Runtime Environment (JRE) HTTP Server Implementation May Allow a Denial of Service (DoS) Condition on a JAX-WS Service Endpoint
1020230.1254610  19-Jan-2010A Security Vulnerability in the Java Runtime Environment (JRE) Virtual Machine With Code Generation May Allow Escalation of Privileges
1020231.1254611  19-Jan-2010Multiple Security Vulnerabilities in Java Plug-in May Allow Privileges to be Escalated
1020232.1254628  15-Mar-2009Security Vulnerabilities in the UFS File System Relating to ufs_getpage() and ufs_putpage() Routines May Allow a Local User to Hang or Panic the System
1020254.1254909  05-Apr-2009Multiple Security Vulnerabilities in the Adobe Flash Player for Solaris 10 (Adobe Security Bulletin APSB09-01)
1020258.1255008  05-Apr-2009Security Vulnerability in Sun Java System Calendar Server 6.3 May Allow Denial of Service (DoS)
1020273.1255308  26-Aug-2009A Security Vulnerability May Allow Popup Windows to Appear Through the Solaris XScreenSaver Program
1020287.1255608  25-Mar-2009A Security Vulnerability in OpenSolaris may Allow a Privileged User Inside a non-global Zone to Execute Arbitrary Code Within a Global Zone
1020302.1255848  19-Jan-2010A Security Vulnerability in the Sun Java System Directory Server May Allow Users to Probe for Filenames and View Limited Content of Files
1020305.1255928  20-May-2010Security Vulnerability with HTTP Response Splitting in Sun Java System Delegated Administrator
1020307.1255968  03-Jan-2010Security Vulnerability in Sun Java System Access Manager May Provide Security Information to the Wrong Client
1020321.1256228  20-Jan-2010Cross-Site Scripting (XSS) Vulnerability in Sun Java System Calendar Server
1020330.1256408  06-Apr-2009Multiple Security Vulnerabilities in Firefox Versions Before 2.0.0.19 May Allow Execution of Arbitrary Code or Access to Unauthorized Data
1020343.1256568  20-Jan-2010Cross-Site Scripting (XSS) Security Vulnerability in the Sun Java System Access Manager Cross-Domain Controller (CDC)
1020344.1256588  19-Jan-2010A Cross-Site Scripting (XSS) Vulnerability in Sun Java System Portal Server's Error Page May Lead to Execution of Arbitrary Code
1020348.1256668  19-Jan-2010A Security Vulnerability in Sun Java System Access Manager May Disclose Confidential Information
1020355.1256728  02-Aug-2009Multiple Security Vulnerabilities in the Solaris Kerberos 'Mech' Libraries May Lead To Execution of Arbitrary Code, Unauthorized Access to Data or a Denial of Service (DoS) Condition
1020356.1256748  08-Jun-2009A Security Vulnerability in the Solaris rpc.nisd(1M) Daemon may Cause a Denial of Service (DoS) Condition to a NIS+ Server
1020358.1256788  28-Jun-2009Multiple Security Vulnerabilities in Adobe Reader for Solaris 10 May Allow Execution of Arbitrary Code or Cause a Denial of Service (DoS) (Adobe Security Bulletin APSB09-04)
1020369.1257008  01-Sep-2009Security Vulnerability with the Solaris IPv4 Networking Stack Involving the Cassini Gigabit-Ethernet Device Driver and Jumbo Frames
1020386.1257329  13-Aug-2009A Security Vulnerability in Certain System Board Firmware Revisions of Sun Fire V215 Servers with XVR-100 Graphic Cards may Allow an Unprivileged User to Panic the System
1020388.1257331  19-Apr-2009Security Vulnerability in OpenSolaris SCTP Sockets May Allow Unprivileged Users to Panic the System
1020395.1257548  09-Jun-2009A Security Vulnerability in OpenSolaris smbfs(7FS) may Expose Data to Unauthorized Users
1020403.1257708  04-Jun-2009Security Vulnerabilities in DTrace (dtrace(1M)) ioctl(2) Handlers May Lead to a Denial of Service (DoS) Condition
1020411.1257848  16-Aug-2009Security Vulnerability in the Solaris Kernel Involving the Interaction of the Filesystem and Virtual Memory Subsystems
1020420.1257988  13-May-2009Security Vulnerability in Solaris 9 fstat(2) System Call May Lead to a System Panic, Resulting in a Denial of Service (DoS)
1020423.1258048  06-Jul-2010A Security Vulnerability in the ASN.1 Handling in Solaris OpenSSL May Lead to a Denial of Service (DoS) Condition
1020424.1258068  19-May-2009Cross-Site Scripting (XSS) Vulnerability in Sun Java System Communications Express
1020442.1258508  22-Jul-2009A Security Vulnerability in the Sun Java System Access Manager Policy Agent May Result in a Denial of Service (DoS) to Web Proxy Server 4.0
1020443.1258528  19-Jan-2010Multiple Security Vulnerabilities in Sun GlassFish Enterprise Server 2.1 (formerly Sun Java System Application Server 9.1UR2) May Lead to a Denial of Service (DoS) Condition or Execution of JavaScript Code
1020445.1258588  20-Jan-2010Security Vulnerability in the Solaris sendfile(3EXT) and sendfilev(3EXT) Extended Library Functions may Result in a Denial of Service (DoS) Condition due to a System Panic
1020452.1258748  19-Jan-2010Multiple Security Vulnerabilities in Mozilla Thunderbird Versions Prior to 2.0.0.19 May Allow Execution of Arbitrary Code or Unauthorized Access to Data
1020455.1258808  20-Jan-2010Security Vulnerability in PostgreSQL Shipped with Solaris may Allow a Denial of Service (DoS)
1020456.1258828  17-Jun-2009A Memory Leak in the Solaris Ultra-SPARC T2 crypto provider device driver (n2cp(7D)) may Result in Denial of Service (DoS) to the System as a Whole
1020461.1258888  05-Jul-2009A Security Vulnerability Involving the OpenSolaris Process File System (proc(4)) May Allow an Unprivileged Local User to Panic the System
1020463.1258928  24-Jan-2010A Security Vulnerability May Allow Popup Windows to Appear Through the Solaris XScreenSaver Program on Xorg(1) Servers
1020468.1259028  01-Sep-2009Multiple Security Vulnerabilities in Adobe Reader for Solaris 10 May Allow Execution of Arbitrary Code or Cause Denial of Service (DoS)
1020474.1259148  28-Jul-2009Security Vulnerability in the Solaris Simple Authentication and Security Layer (SASL) Library (see libsasl(3LIB)) Routine sasl_encode64(3SASL) may Allow Unprivileged Users to Crash Applications Using this Function
1020486.1259388  10-Aug-2009A Security Vulnerability Involving xscreensaver(1) and Assistive Technology Support May Allow an Unauthorized User to Access the System
1020487.1259408  20-May-2009A Security Vulnerability in the Solaris Secure Digital Slot Driver (sdhost(7D)) May Allow Corruption of Kernel Memory and Memory Card Contents
1020498.1259468  21-May-2009Multiple Vulnerabilities in the Solaris 8 and 9 sadmind(1M) Daemon May Lead to Arbitrary Code Execution
1020504.1259588  02-Jun-2009Cross-Site Scripting (XSS) Vulnerability in the Sun Java System Web Server 6.1 Reverse Proxy Plug-in
1020521.1259989  10-Nov-2010Security Vulnerability in Solaris libpng(3) May Allow Denial of Service (DoS) or Privilege Escalation
1020542.1260449  17-Jun-2009Two Race Condition Vulnerabilities in the Solaris Event Port API May Allow Local Users to Panic the System, Causing a Denial of Service (DoS)
1020546.1260508  04-Jun-2009A Security Vulnerability in idmap(1M) of OpenSolaris may Allow a Denial of the CIFS (Common Internet File System) Service (DoS)
1020547.1260528  09-Jun-2009Security Vulnerability in the GnuTLS (libgnutls(3)) Library Certificate Chain Validation
1020570.1260951  14-Jul-2009A Security Vulnerability in the Solaris IP Filter (ipf(5)) May Lead to a Denial of Service (DoS) Condition
1020578.1261088  09-Jun-2009Multiple Security Vulnerabilities in Common UNIX Printing System (CUPS) May Allow a Remote User to Execute Arbitrary Code
1020599.1261408  20-May-2010Security Vulnerability in Lightweight Availability Collection Tool May Allow Unprivileged User to Overwrite Files
1020611.1261688  05-Aug-2009A Security Vulnerability in OpenSSO Enterprise and Sun Java System Access Manager May Cause Denial of Service (DoS)
1020621.1261849  20-Sep-2009A Security Vulnerability in the Solaris iSCSI Management Commands (iscsiadm(1M) and iscsitadm(1M)) may Allow Privilege Escalation
1020634.1262048  05-Jul-2009A patch regression in Solaris Kernel udp(7p) may Cause Certain Trusted Configurations of Solaris to Panic or Become Vulnerable to Triggered Panics Resulting in a Denial of Service (DoS)
1020636.1262088  24-Jun-2009Security Vulnerability in the Solaris auditconfig(3M) Command May Allow Users With an Associated RBAC Profile to Gain Elevated Privileges
1020647.1262288  13-Sep-2009Multiple Security Vulnerabilities in Solaris Ghostscript (GS(1)) May lead to Denial of Service (DoS) or Execution of Arbitrary Code
1020658.1262408  22-Jun-2009Security Vulnerability in the Solaris IP(7P) Multicast Reception May Lead to a Denial of Service (DoS) Condition
1020659.1262428  21-May-2010Cross-site Scripting (XSS) Security Vulnerability in Sun Java Web Console May Allow Execution of Arbitrary Code
1020661.1262468  24-Jun-2009Security Vulnerability in the Apache 1.3 "mod_jk" Module may Lead to Unauthorized Access to Data
1020673.1262668  29-Jun-2009Security Vulnerability in the Solaris Network File System Version 4 (NFSv4) 'nfs_portmon' Tunable May Allow Unauthorized Network Access
1020675.1262708  24-Jun-2009Security Vulnerability in the Virtual Network Terminal Server Daemon (vntsd(1M)) for Logical Domains (LDoms) May Allow Unauthorized Access to Guest Domain Console
1020679.1262788  14-Jul-2009Security Vulnerability in Solaris NFSv4 Kernel Module May Panic an NFSv4 Client System
1020685.1262908  07-Sep-2009Security Vulnerability in the SNMP daemon (snmpd(1M)) May Lead to a Denial of Service (DoS) Condition
1020706.1263388  10-Nov-2009Security Vulnerabilities in Solaris IP(7P) Module and STREAMS Framework May Lead to a Denial of Service (DoS) Condition
1020707.1263408  20-Jan-2010A Security Vulnerability in the Java Runtime Environment Audio System may Allow System Properties to be Accessed
1020708.1263409  20-Jan-2010Security Vulnerabilities With the Proxy Mechanism Implementation in the Java Runtime Environment (JRE) may Lead to Escalation of Privileges
1020709.1263428  20-Jan-2010Integer Overflow Vulnerability in the Java Runtime Environment When Parsing JPEG Images
1020710.1263429  20-Jan-2010A Security Vulnerability With Verifying HMAC-based XML Digital Signatures in the XML Digital Signature Implementation Included With the Java Runtime Environment (JRE) may Allow Authentication to be Bypassed
1020712.1263488  19-Jan-2010Integer Overflow Vulnerability in the Java Runtime Environment (JRE) "Unpack200" JAR Unpacking Utility May Lead to Escalation of Privileges
1020713.1263489  19-Jan-2010A Security Vulnerability in the Java Runtime Environment (JRE) With Parsing XML Data May Allow a Remote Client to Create a Denial of Service (DoS) Condition
1020714.1263490  19-Jan-2010JDK and JRE Blacklist Entry for JNLPAppletLauncher Vulnerability
1020715.1263508  19-Jan-2010Security Vulnerability in StarOffice/StarSuite Related to Microsoft Word Document Handling may Lead to Arbitrary Code Execution
1020717.1263529  08-Oct-2009Security Vulnerabilities in Solaris Bundled Tomcat May Lead to Unauthorized Access to Data or Denial of Service (DoS)
1020726.1263689  20-May-2010This Alert covers CVE-2010-0882 for the Trusted Extensions component of the Solaris and OpenSolaris products.
1020746.1264048  21-Apr-2010Security Vulnerability in the Solaris XScreenSaver (xscreensaver(1)) Program May Allow Unauthorized Access to Sensitive Information
1020755.1264248  20-May-2010Security Vulnerability in the Simple Authentication and Security Layer (SASL) Library Bundled with the Java Enterprise System (JES) may Allow Unprivileged Users to Crash Applications Using the sasl_encode64 Function
1020757.1264308  28-Jul-2009Multiple Security Vulnerabilities in Firefox Versions Prior to 3.5b4 May Allow Execution of Arbitrary Code or Access to Unauthorized Data
1020765.1264428  19-Jan-2010Security Vulnerability in Solaris Auditing Related to Extended File Attributes May Allow Local Unprivileged Users to Panic the System
1020766.1264429  19-Jan-2010Race Condition Security Vulnerability in Solaris Auditing Related to Extended File Attributes May Allow Local Unprivileged Users to Panic the System
1020773.1264608  24-Aug-2009A Security Vulnerability in the Solaris Print Service (in.lpd(1M)) May Lead to a Denial of Service (DoS) Condition
1020775.1264648  19-Jan-2010Security Vulnerability in the Active Template Library in Various Releases of Microsoft Visual Studio Used by the Java Web Start ActiveX Control May Be Leveraged to Execute Arbitrary Code
1020780.1264730  02-Dec-2009A Security Vulnerability in Solaris Sockets Direct Protocol (SDP) Driver (sdp(7D)) may Allow Users to Exhaust Kernel Memory
1020787.1264808  28-Jul-2009Security Vulnerability in Solaris Trusted Extensions Involving the Parsing of Labeled Packets May Result in Denial of Service (DoS)
1020788.1264828  24-Jan-2010A Security Vulnerability in Solaris BIND named(1M) Due to Insufficient Input Validation of Dynamic Update Requests Can Lead to Denial of Service (DoS)
1020798.1265030  11-Aug-2009Multiple Security Vulnerabilities in libtiff(3) Handling of CODE_CLEAR Code
1020800.1265068  20-May-2010Multiple Security Vulnerabilities in Firefox Versions Prior to 3.5 May Allow Execution of Arbitrary Code or Access to Unauthorized Data
1020811.1265248  20-Aug-2009Security Vulnerability in Solaris pollwakeup(9F) May Allow an Unprivileged User to Panic the System
1020812.1265268  19-Jan-2010Security Vulnerability in Sun VirtualBox May Lead to Denial of Service (DoS)
1020815.1265329  06-Aug-2009Security Vulnerabilities in Sun Java System Access Manager Policy Agent 2.2 (Web Agents) May Cause Denial of Service (DoS)
1020816.1265330  31-Aug-2009Multiple Security Vulnerabilities in Adobe Reader for Solaris 10 May Allow Execution of Arbitrary Code or Cause Denial of Service (DoS) (Adobe Security Bulletin APSB09-07)
1020824.1265488  14-May-2010A Security Vulnerability in Sun Virtual Desktop Infrastructure (VDI) Software 3.0 may Lead to Inadvertent use of an Insecure LDAP Connection
1020829.1265608  16-Jun-2010Security Vulnerability with the Solaris IPv6 Networking Stack Involving the Cassini Gigabit-Ethernet Device Driver and Jumbo Frames
1020841.1265808  19-Aug-2009Multiple Integer Overflow Vulnerabilities in the libtiff(3) Image Conversion Tools 'tiff2rgba' and 'rgb2ycbcr' May Lead to Arbitrary Code Execution
1020844.1265888  09-Sep-2009Security Vulnerability in Solaris sockfs Related to HTTP Request Handling May Allow Remote Users to Panic Web Servers Resulting in a Denial of Service (DoS)
1020845.1265908  13-Dec-2009A Security Vulnerability in the ZFS Filesystem May Allow An Unprivileged User to Take Ownership of Files Belonging to Another User
1020855.1266088  19-Jan-2010Security Vulnerability in StarOffice/StarSuite 8 and 9 Related to XML Document Processing may Lead to Arbitrary Code Execution
1020856.1266108  30-Aug-2009Multiple Security Vulnerabilities in the Flash Player for Solaris 10 (Adobe Security Bulletin APSB09-10)
1020858.1266148  20-Aug-2009Multiple Security Vulnerabilities in Firefox Versions Prior to 3.5.2 May Allow Execution of Arbitrary Code or Application Crash
1020861.1266228  08-Sep-2009Security Vulnerability in lx Branded Zones May Result in Denial of Service (DoS)
1020866.1266348  01-Nov-2009Security Vulnerability in the w(1) Utility may Lead to Execution of Arbitrary Code
1020868.1266388  03-Nov-2009Security Vulnerability in Solaris SCTP (Stream Control Transmission Protocol (see sctp(7P)) and SDP (Sockets Direct Protocol driver (see sdp(7D)) sockets May Allow Unprivileged Users to Cause a Denial of Service (DoS)
1020871.1266428  01-Dec-2009Multiple Security Vulnerabilities in the XML Library (see libxml2(3)) Bundled With Sun Management Center (SunMC) May Result in Arbitrary Code Execution or a Denial of Service (DoS)
1020872.1266429  28-Sep-2010A Security Vulnerability in the Sun Java System Web Server Related to Handling of Dynamic Content May Lead to Unauthorized Information Disclosure
1020876.1266488  09-Nov-2009Security Vulnerability in Solaris TCP sockets May Allow Unprivileged Users to Cause a Denial of Service (DoS) Condition
1020887.1266688  28-Sep-2009Security Vulnerabilities in libxml2 Library Related to Parsing of Element Declarations, Notation and Enumeration Attribute Types may Lead to a Denial of Service (DoS)
1020896.1266908  14-Dec-2009Security vulnerability in Solaris Pidgin (see pidgin(1)), Versions Prior to 2.5.9 may Lead to Execution of Arbitrary Code or a Denial of Service (DoS) Condition
1020905.1267031  12-Oct-2009Heap Overflow in a Regular Expression Parser in Network Security Services (NSS) may Affect SSL Clients (CVE-2009-2404)
1020909.1267088  18-Jan-2010Multiple Security Vulnerabilities in Solaris TCP (see tcp(7P)) Implementation May Lead to a Denial of Service (DoS) Condition
1020912.1267148  21-Sep-2009A Security Vulnerability in Solaris Cluster 3.2 Configuration Utility (clsetup(1CL)) may Lead to Escalation of Privileges
1020930.1267488  22-Sep-2009Security Vulnerabilities in Solaris Trusted Extensions Common Desktop Environment (CDE) may allow Privilege Escalation or Mandatory Access Control (MAC) Policy Violation
1020933.1267548  21-Dec-2009Security Vulnerability in the Sun Ray Server Software Authentication Manager May Allow a Denial of Service (DoS)
1020934.1267568  19-May-2010This Alert Covers CVE-2010-0894 for the Sun Java System Access Manager Product
1020936.1267628  28-Sep-2009Security Vulnerability in Samba (SAMBA(7)) May Allow Unauthorized Changes to Access Control Lists (ACL)
1020945.1267808  05-Oct-2009Buffer Underflow Vulnerability in the Solaris Tag Image File Format Library libtiff(3) may Lead to a Denial of Service (DoS) Condition
1020966.1268188  19-Jan-2010Security Vulnerability in the VBoxNetAdpCtl Configuration Tool for Sun VirtualBox May Lead to Escalation of Privileges
1020967.1268189  03-Dec-2009Security Vulnerability in the Solaris IP(7p) Kernel Module May Allow Remote Users to Panic the System, Resulting in a Denial of Service (DoS)
1020969.1268228  09-Dec-2009Vulnerability in Sun Ray Server Software due to Logout Failure
1020972.1268288  19-Oct-2009A Regression in the Solaris 10 Gnome-XScreenSaver (see xscreensaver(1)) may Allow Pop-up Windows to Appear through XScreenSaver when the Accessibility Feature is On
1020974.1268328  14-May-2010A Security Vulnerability in Sun Virtual Desktop Infrastructure (VDI) Software 3.0 may Lead to Unauthorized Access to the VirtualBox Web Service
1020980.1268448  12-Oct-2009Multiple Security Vulnerabilities in Firefox Versions Before 3.5.3 May Allow Execution of Arbitrary Code, Access to Unauthorized Data, or Denial of Service (DoS)
1021007.1269008  12-Oct-2009Multiple Security Vulnerabilities in the JBIG2 Decoder in the OpenSolaris GNOME PDF Viewer may Lead to Execution of Arbitrary Code
1021017.1269208  28-Oct-2009A Security Vulnerability With Verifying HMAC-based XML Digital Signatures in the XML Digital Signature Implementation Included With the Sun GlassFish Enterprise Server v2.1 may Allow Authentication to be Bypassed
1021023.1269368  19-Jan-2010Cross-Site Scripting (XSS) Vulnerabilities in Sun Java System Portal Server's Gateway May Lead to Execution of Arbitrary Code
1021030.1269468  20-Jan-2010Security Vulnerability in Mozilla Thunderbird Related to SSL Certificates May Cause Arbitrary Code Execution
1021043.1269788  09-Nov-2009Security Vulnerability in Solaris libpng(3) May Allow a Remote User to Disclose Potentially Sensitive Information from Applications Linked to libpng(3)
1021046.1269868  19-Jan-2010The Java Update Mechanism on Non-English Versions Does Not Update the JRE When a New Version is Available
1021047.1269869  19-Jan-2010Command Execution Vulnerability in the Java Runtime Environment Deployment Toolkit May be Leveraged to Execute Arbitrary Code
1021048.1269870  19-Jan-2010Security Vulnerability in the Java Web Start Installer May be Leveraged to Allow Untrusted Java Web Start Application to Run As Trusted Application
1021068.1270268  21-Oct-2010Multiple Integer Overflow Vulnerabilities in the FreeType 2 Font Engine May Lead to a Denial of Service (DoS) or Allow Execution of Arbitrary Code
1021076.1270408  02-Nov-2009Security Vulnerabilities in PostgreSQL Shipped with Solaris may Allow a Denial of Service (DoS) or Privilege Escalation
1021082.1270474  20-Jan-2010Buffer and Integer Overflow Vulnerabilities in the Java Runtime Environment With Processing Audio and Image Files May Allow Privileges to be Escalated
1021083.1270475  20-Jan-2010A Security Vulnerability in the Java Runtime Environment With Verifying HMAC Digests may Allow Authentication to be Bypassed
1021084.1270476  20-Jan-2010Two Security Vulnerabilities in the Java Runtime Environment With Decoding DER Encoded Data and Parsing HTTP Headers may Result in a Denial of Service (DoS)
1021089.1270549  08-Dec-2009A Security Vulnerability in the Generation of Encryption Keys for Sun Ray Firmware
1021093.1270669  29-Nov-2009Multiple Security Vulnerabilities in Adobe Reader for Solaris 10 May Allow Execution of Arbitrary Code or Cause Denial of Service (DoS) - Adobe Security Bulletin APSB09-15
1021100.1270789  19-Jan-2010Directory Proxy Server Provided with Directory Server Enterprise Edition 6 is Subject to Denial of Service (DoS) and May Allow Unauthorized Access to Certain Data
1021101.1270809  28-Oct-2009Security Vulnerability in Solaris Trusted Extensions may Prevent XScreenSaver (xscreensaver(1)) From Running
1021107.1270969  25-Oct-2009A Security Weakness in Solaris Trusted Extensions May Facilitate Privilege Escalation
1021111.1271069  10-Feb-2010Two Security Vulnerabilities in SAMBA(7) May Allow Unauthorized Access to the Remote Root Filesystem or May Lead to a Denial of Service (DoS) Condition
1021114.1271149  03-Dec-2009Security Vulnerability in VirtualBox Guest Additions May Lead to Denial of Service against the Virtual Machine
1021115.1271169  01-Mar-2010Multiple Security Vulnerabilities in the Common Unix Printing System (CUPS) Web Interface in OpenSolaris May Lead to Cross-Site Scripting (XSS) and HTTP Response Splitting Attacks
1021506.1272209  19-Jan-2010A Security Vulnerability in the Java Runtime Environment (JRE) Bundled With Sun GlassFish Enterprise Server v2.1 / Sun Java System Application Server 8.x While Parsing XML Data May Cause a Denial of Service (DoS)
1021508.1272230  11-Mar-2010Security Vulnerabilities in the Apache 2 "mod_perl2" Module Components "PerlRun.pm" and "Status.pm" May Lead to Denial of Service (DoS) or Unauthorized Access to Data
1021575.1272489  10-Jan-2010Security Vulnerability in the OSCAR Protocol Plugin for pidgin(1) may Lead to a Denial of Service (DoS) Condition
1021628.1272629  19-Jan-2010Security Vulnerability in the Timeout Mechanism of Solaris sshd(1M) may Lead to a Denial of Service (DoS)
1021645.1272909  23-Nov-2009Multiple Security Vulnerabilities in Firefox Versions Before 3.5.5 May Allow Execution of Arbitrary Code or Unauthorized Access to Certain Data
1021653.1273029  22-Jun-2010Security Vulnerability in the Transport Layer Security (TLS) and Secure Sockets Layer 3.0 (SSLv3) Protocols Involving Handshake Renegotiation Affects OpenSSL
1021660.1273169  22-Jun-2010Security Vulnerability in BIND DNS Software Shipped With Solaris May Allow DNS Cache Poisoning
1021671.1273350  11-Jan-2010Security Vulnerability in the Transport Layer Security (TLS) and Secure Sockets Layer 3.0 (SSLv3) Protocols Involving Handshake Renegotiation Affects Applications Utilizing Network Security Services (NSS)
1021680.1273551  18-Oct-2010Two Security Vulnerabilities in GNU tar (see gtar(1)) May Lead to Files Being Overwritten, Execution of Arbitrary Code, or a Denial of Service (DoS)
1021682.1273570  10-Jan-2010Multiple Buffer and Integer Overflow Vulnerabilities in Python (python(1)) May Lead to a Denial of Service (DoS) or Allow Execution of Arbitrary Code
1021683.1273590  29-Sep-2010Security Vulnerability in wget(1) Related to Certificate Parsing may Allow Encrypted HTTP Communication to be Intercepted Using a Man-in-the-Middle (MITM) Attack
1021686.1273630  13-Dec-2009Multiple Security Vulnerabilities in the libexpat Library May Lead to a Denial of Service (DoS) Condition
1021697.1273850  21-May-2010This Alert covers CVE-2010-0889 for the kernel component of the Solaris and OpenSolaris products.
1021699.1273910  21-May-2010This Alert covers CVE-2009-2404 and CVE-2009-0688 for the Directory Server component of the Sun ONE Directory Server and Sun Java System Directory Server products.
1021706.1274030  24-Feb-2010Multiple Security Vulnerabilities in the Solaris GNOME PDF Rendering Libraries May Lead to a Denial of Service (DoS) or Execution of Arbitrary Code
1021709.1274110  07-Mar-2010Security Vulnerability in the Apache 1.3 "mod_perl" Module Component "Status.pm" May Lead to Unauthorized Access to Data
1021716.1274250  20-May-2010Multiple Security Vulnerabilities in the Adobe Flash Player for Solaris May Lead to a Denial of Service (DoS) or Arbitrary Code Execution (Adobe Security Bulletin APSB09-19)
1021722.1274390  10-Jan-2010An Integer Overflow Vulnerability in GIMP(1) May Lead to Denial of Service (DoS) or Execution of Arbitrary Code
1021732.1274590  19-May-2010This Alert Covers CVE-2010-0888 for the Device Services Component of the Sun Ray Server Software Product
1021744.1274830  04-Jan-2010Security Vulnerability May Prevent OpenSolaris "hald" Daemon From Correctly Writing Audit Records
1021746.1274870  18-Jan-2010Security Vulnerabilities in PostgreSQL Shipped With Solaris May Allow Escalation of Privileges or Man-in-the-Middle on SSL Connections
1021752.1274990  04-Mar-2010Security Vulnerability in the Transport Layer Security (TLS) and Secure Sockets Layer 3.0 (SSLv3) Protocols Affects Multiple Server Products in the Sun Java Enterprise System Suite
1021753.1275010  10-Jan-2010Security Vulnerability in Identity Manager 8.1.0.5 and 8.1.0.6 Configured with Sun Java System Access Manager, OpenSSO Enterprise 8.0 or IBM Tivoli Access Manager
1021763.1275230  06-Jan-2010A "use-after-free" Vulnerability in the OpenSolaris Common Unix Printing System (CUPS) may Lead to a Denial of Service (DoS) Condition
1021773.1275410  10-Jan-2010A Security Vulnerability in Solaris Trusted Extensions due to Missing Libraries may Allow Privilege Escalation
1021779.1275530  17-Mar-2010Integer Overflow Security Vulnerability in AES and RC4 Decryption in the Solaris Kerberos Crypto Library May Lead to Execution of Arbitrary Code or a Denial of Service (DoS)
1021781.1275590  30-Jun-2010A Security Vulnerability in the ntp Daemon (xntpd(1M)) May Lead to a Denial of the Solaris Network Time Protocol (NTP) Service
1021784.1275650  14-Apr-2010A Race Condition Security Vulnerability in the OpenSolaris "automake" Utility may Allow Modification of Package Files or Execution of Arbitrary Code
1021788.1275711  22-Oct-2010Security Vulnerability in the Sun Java System Directory Server May Allow Crafted LDAP Search Requests To Cause A Denial Of Service (DoS) Condition
1021793.1275790  19-May-2010A Security Vulnerability Exists if an OpenSolaris System was Joined to a Windows Domain Using kclient(1M) or smbadm(1M)
1021796.1275850  03-Feb-2010Multiple security vulnerabilities in the HTTP TRACE, WebDAV and Digest Authentication Methods in the Sun Java System Web Server and Sun Java System Web Proxy Server
1021797.1275870  07-Jun-2010A Security Vulnerability Relating to Certificate Handling in sendmail(1M) Versions Prior to 8.14.4 May Allow Server Identification Forgery
1021798.1275890  07-Jun-2010Multiple Security Vulnerabilities in BIND DNSSEC Software Shipped With Solaris May Cause Bogus NXDOMAIN Responses
1021799.1275910  21-May-2010This Alert Covers CVE-2010-0453 for the /dev/ucode Component of the Solaris and OpenSolaris Products.
1021807.1276090  21-May-2010This Alert Covers CVE-2010-0893 for the Mail Component of the Sun Convergence Product
1021808.1276130  19-May-2010This Alert covers CVE-2010-0883 and CVE-2010-0884 for the Data Service for Oracle E-Business Suite component of the Sun Cluster product.
1021812.1276210  19-May-2010This Alert covers CVE-2010-0897 for the Sun Java System Directory Server product.
1021863.1276411  17-May-2010This Alert covers CVE-2010-0896 for the mail component of the Sun Convergence product.
1021965.1276533  21-May-2010This Alert covers CVE-2010-0895 for the IP Filter component of the OpenSolaris product.
1022024.1276630  21-May-2010This Alert covers the Address Book component of the Sun Java System Communications Express product.
1022203.1277450  20-May-2010A Security Vulnerability in Solaris Pidgin (see pidgin(1)) May Allow Remote Unprivileged Users to Access Arbitrary Files
1022294.1279590  21-May-2010Oracle Security Alert for CVE-2010-0886 was released on April 15th, 2010.