CVE-2009-0346
https://notcve.org/view.php?id=CVE-2009-0346
The IP-in-IP packet processing implementation in the IPsec and IP stacks in the kernel in Sun Solaris 9 and 10, and OpenSolaris snv_01 though snv_85, allows local users to cause a denial of service (panic) via a self-encapsulated packet that lacks IPsec protection. La implementacion del procesado del paquete IP-en-IP en la pila de IPsec e IP en Sun Solaris v9 y v10, y OpenSolaris desde snv_01 hasta snv_85, permite a usuarios locales producir una denegacion de servicio (panic) a traves de un paquete autoencapsulado que carece de proteccion IPsec. • http://secunia.com/advisories/33727 http://sunsolve.sun.com/search/document.do?assetkey=1-21-114344-38-1 http://sunsolve.sun.com/search/document.do?assetkey=1-66-240086-1 http://support.avaya.com/elmodocs2/security/ASA-2009-043.htm http://www.securityfocus.com/bid/33504 http://www.vupen.com/english/advisories/2009/0365 https://exchange.xforce.ibmcloud.com/vulnerabilities/48328 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6088 • CWE-310: Cryptographic Issues •
CVE-2009-0319
https://notcve.org/view.php?id=CVE-2009-0319
Unspecified vulnerability in the autofs module in the kernel in Sun Solaris 8 through 10, and OpenSolaris before snv_108, allows local users to cause a denial of service (autofs mount outage) or possibly gain privileges via vectors related to "xdr processing problems." Vulnerabilidad sin especificar en el módulo autofs en el kernel en Sun Solaris 8 a la 10, y OpenSolaris anterior a snv_108, permite a usuarios locales provocar una denegación de servicio (parada del montaje autofs) o posiblemente la obtención de privilegios a través de vectores relacionados con "problemas de procesado xdr (xdr processing problems)." • http://secunia.com/advisories/33665 http://sunsolve.sun.com/search/document.do?assetkey=1-21-128624-09-1 http://sunsolve.sun.com/search/document.do?assetkey=1-66-249966-1 http://support.avaya.com/elmodocs2/security/ASA-2009-041.htm http://www.securityfocus.com/bid/33459 http://www.securitytracker.com/id?1021644 http://www.vupen.com/english/advisories/2009/0256 http://www.vupen.com/english/advisories/2009/0363 https://exchange.xforce.ibmcloud.com/vulnerabilities/48234 https:/ •
CVE-2009-0304 – SunOS Release 5.11 snv_101b - Remote IPv6 Crash
https://notcve.org/view.php?id=CVE-2009-0304
The kernel in Sun Solaris 10 and 11 snv_101b, and OpenSolaris before snv_108, allows remote attackers to cause a denial of service (system crash) via a crafted IPv6 packet, related to an "insufficient validation security vulnerability," as demonstrated by SunOSipv6.c. El kernel en Sun Solaris versiones 10 y 11 snv_101b, y OpenSolaris anterior a snv_108, permite a los atacantes remotos causar una denegación de servicio (bloqueo del sistema) por medio de un paquete IPv6 diseñado, relacionado con una "insufficient validation security vulnerability," como es demostrado mediante el archivo SunOSipv6.c. • https://www.exploit-db.com/exploits/7865 http://lists.grok.org.uk/pipermail/full-disclosure/2009-January/067709.html http://secunia.com/advisories/33605 http://securitytracker.com/id?1021635 http://sunsolve.sun.com/search/document.do?assetkey=1-66-251006-1 http://www.securityfocus.com/bid/33435 http://www.vupen.com/english/advisories/2009/0232 https://exchange.xforce.ibmcloud.com/vulnerabilities/48208 •
CVE-2009-0277
https://notcve.org/view.php?id=CVE-2009-0277
Unspecified vulnerability in the kernel in OpenSolaris snv_100 through snv_102 on the Sun UltraSPARC T2 and T2+ sun4v platforms allows local users to cause a denial of service (panic) via unknown vectors. Una vulnerabilidad no especificada en el núcleo del kernel de OpenSolaris snv_100 a snv_102 en las plataformas Sun UltraSPARC T2 y T2 + sun4v , permite a usuarios locales provocar una denegación de servicio (con un panic del sistema) a través de vectores desconocidos. • http://sunsolve.sun.com/search/document.do?assetkey=1-66-250066-1 http://www.securityfocus.com/bid/33398 http://www.vupen.com/english/advisories/2009/0209 https://exchange.xforce.ibmcloud.com/vulnerabilities/48164 •
CVE-2009-0268
https://notcve.org/view.php?id=CVE-2009-0268
Race condition in the pseudo-terminal (aka pty) driver module in Sun Solaris 8 through 10, and OpenSolaris before snv_103, allows local users to cause a denial of service (panic) via unspecified vectors related to lack of "properly sequenced code" in ptc and ptsl. Una condición de carrera en el pseudo-terminal (alias PTY) en el módulo controlador de Sun Solaris 8 a 10, y OpenSolaris en versiones anteriores a la snv_103, permite a usuarios locales provocar una denegación de servicio (con un panic del kernel) a través de vectores no especificados relacionados con la falta de "código correctamente secuenciado" en PTC y PTSL. • http://secunia.com/advisories/33708 http://sunsolve.sun.com/search/document.do?assetkey=1-21-113685-07-1 http://sunsolve.sun.com/search/document.do?assetkey=1-66-249586-1 http://support.avaya.com/elmodocs2/security/ASA-2009-034.htm http://www.securityfocus.com/bid/33406 http://www.securitytracker.com/id?1021640 https://exchange.xforce.ibmcloud.com/vulnerabilities/48179 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6061 • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •