CVE-2009-2486
https://notcve.org/view.php?id=CVE-2009-2486
Unspecified vulnerability in the SCTP implementation in Sun Solaris 10, and OpenSolaris before snv_120, allows remote attackers to cause a denial of service (panic) via unspecified packets. Vulnerabilidad no especificada en la implementación SCTP en Sun Solaris 10, y OpenSolaris anteriores a snv_120, permite a los atacantes remotos causar una denegación de servicio (pánico) a través de paquetes no especificados. • http://osvdb.org/55875 http://secunia.com/advisories/35873 http://sunsolve.sun.com/search/document.do?assetkey=1-21-141414-01-1 http://sunsolve.sun.com/search/document.do?assetkey=1-66-253608-1 http://www.securitytracker.com/id?1022574 http://www.vupen.com/english/advisories/2009/1914 https://exchange.xforce.ibmcloud.com/vulnerabilities/51740 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6349 •
CVE-2009-2430
https://notcve.org/view.php?id=CVE-2009-2430
Unspecified vulnerability in auditconfig in Sun Solaris 8, 9, 10, and OpenSolaris snv_01 through snv_58, when Solaris Auditing is enabled, allows local users with an RBAC execution profile for auditconfig to gain privileges via unknown attack vectors. Vulnerabilidad no especificadar en auditconfig en Sun Solaris v8, v9, v10 y OpenSolaris snv_01 hasta snv_58, cuando auditoría de Solaris está activada, permite a los usuarios locales con un perfil de ejecución RBAC para auditconfig obtener privilegios a través de vectores de ataque desconocidos. • http://secunia.com/advisories/35580 http://sunsolve.sun.com/search/document.do?assetkey=1-26-262088-1 http://www.securityfocus.com/bid/35501 •
CVE-2009-2296
https://notcve.org/view.php?id=CVE-2009-2296
The NFSv4 server kernel module in Sun Solaris 10, and OpenSolaris before snv_119, does not properly implement the nfs_portmon setting, which allows remote attackers to access shares, and read, create, and modify arbitrary files, via unspecified vectors. El módulo NFSv4 server kernel en Sun Solaris 10, y OpenSolaris anteriores a snv_119, no implemente apropiadamente nfs_portmon, lo que permite a los atacantes remotos acceso a archivos compartidos, leído, creados y modificados arbitrariamente, a través de vectores no especificados. • http://osvdb.org/55519 http://secunia.com/advisories/35672 http://secunia.com/advisories/42550 http://sunsolve.sun.com/search/document.do?assetkey=1-21-139991-03-1 http://sunsolve.sun.com/search/document.do?assetkey=1-66-262668-1 http://www.securityfocus.com/bid/35546 http://www.securitytracker.com/id?1022492 http://www.vupen.com/english/advisories/2009/1747 https://exchange.xforce.ibmcloud.com/vulnerabilities/51450 https://support.avaya.com/css/P8/documents/100058487 •
CVE-2009-2136
https://notcve.org/view.php?id=CVE-2009-2136
Unspecified vulnerability in the TCP/IP networking stack in Sun Solaris 10, and OpenSolaris snv_01 through snv_82 and snv_111 through snv_117, when a Cassini GigaSwift Ethernet Adapter (aka CE) interface is used, allows remote attackers to cause a denial of service (panic) via vectors involving jumbo frames. Vulnerabilidad no especificada en la pila de red TCP/IP en Sun Solaris v10, y en OpenSolaris snv_01 hasta snv_82 y snv_111 hasta snv_117, cuando se utiliza un interfaz Cassini GigaSwift Ethernet Adapter (también conocido como CE), permite a atacantes remotos provocar una denegación de servicio (panic) mediante vectores relacionados con tramas grandes. • http://osvdb.org/55233 http://secunia.com/advisories/35507 http://sunsolve.sun.com/search/document.do?assetkey=1-21-141414-01-1 http://sunsolve.sun.com/search/document.do?assetkey=1-66-257008-1 http://www.vupen.com/english/advisories/2009/2555 •
CVE-2009-2135
https://notcve.org/view.php?id=CVE-2009-2135
Multiple race conditions in the Solaris Event Port API in Sun Solaris 10 and OpenSolaris before snv_107 allow local users to cause a denial of service (panic) via unspecified vectors related to a race between the port_dissociate and close functions. Múltiples condiciones de carrera en el Solaris Event Port API en Sun Solaris v10 y OpenSolaris versiones anteriores a snv_107 permite a usuarios locales provocar una denegación de servicio (panic) mediante vectore no especificados relacionados con una carrera entre las funciones "port_dissociate" y "close". • http://osvdb.org/55231 http://osvdb.org/55232 http://secunia.com/advisories/35279 http://sunsolve.sun.com/search/document.do?assetkey=1-21-141414-01-1 http://sunsolve.sun.com/search/document.do?assetkey=1-66-260449-1 http://support.avaya.com/elmodocs2/security/ASA-2009-246.htm http://www.securityfocus.com/bid/35437 http://www.securitytracker.com/id?1022422 http://www.vupen.com/english/advisories/2009/1634 https://exchange.xforce.ibmcloud.com/vulnerabilities/51284 https: • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •