Advisories
Research
Forums
Create Profile
Our Commitment
Database
Search
Advisories by Product
Advisories by Vendor
Terminology
Report Vulnerability
Insecure Library Loading

Vulnerability Report: Sun Solaris 10.x

This vulnerability report for Sun Solaris 10.x contains a complete overview of all Secunia advisories affecting it. You can use this vulnerability report to ensure that you are aware of all vulnerabilities, both patched and unpatched, affecting this product allowing you to take the necessary precautions.

If you have information about a new or an existing vulnerability in Sun Solaris 10.x then you are more than welcome to contact us.


Table of Contents

1. Product Summary Only

2. Secunia Advisory Statistics (All time)
2.1. Statistics for 2014
2.2. Statistics for 2013
2.3. Statistics for 2012
2.4. Statistics for 2011
2.5. Statistics for 2010
2.6. Statistics for 2009
2.7. Statistics for 2008
2.8. Statistics for 2007
2.9. Statistics for 2006
2.10. Statistics for 2005
2.11. Statistics for 2004
2.12. Statistics for 2003

3. List of Secunia Advisories (All time)
3.1. List for 2014
3.2. List for 2013
3.3. List for 2012
3.4. List for 2011
3.5. List for 2010
3.6. List for 2009
3.7. List for 2008
3.8. List for 2007
3.9. List for 2006
3.10. List for 2005
3.11. List for 2004
3.12. List for 2003

4. Send Feedback
 
Vendor, Links, and Unpatched Vulnerabilities

Vendor Sun Microsystems

Product Link View Here (Link to external site)

Affected By 552 Secunia advisories
1759 Vulnerabilities

Monitor Product Receive alerts for this product

Unpatched 1% (7 of 552 Secunia advisories)

Most Critical Unpatched
The most severe unpatched Secunia advisory affecting Sun Solaris 10.x, with all vendor patches applied, is rated Highly critical .




35 Secunia Advisories in 2014

Secunia has issued a total of 35 Secunia advisories in 2014 for Sun Solaris 10.x. Currently, 9% (3 out of 35) are marked as unpatched with the most severe being rated Less critical

More information about the specific Secunia advisories affecting Sun Solaris 10.x can be found below. Each Secunia advisory is enclosed by a box highlighted with a color representing its current patch status. You can read the complete Secunia advisories for thorough descriptions of the issues covered and for solution suggestions by clicking either the Secunia advisory title or the "Read More" links available for each Secunia advisory.



Oracle Solaris X.Org Xserver "doImageText()" Use-After-Free Vulnerability
Vendor Patch. Secunia Advisory 1 of 35 in 2014. 189 views.
Release Date:
2014-10-17
Secunia Advisory ID:
SA59914
Solution Status:
Vendor Patch
Criticality:
Impact:
System access
Where:
From local network
Short Description:
Oracle has acknowledged a vulnerability in X.Org included in Solaris, which can be exploited by malicious users to compromise a vulnerable system. [Read More]


Oracle Solaris Apache HTTP Server Multiple Denial Of Service Vulnerabilities
Vendor Patch. Secunia Advisory 2 of 35 in 2014. 203 views.
Release Date:
2014-10-16
Secunia Advisory ID:
SA60451
Solution Status:
Vendor Patch
Criticality:
Impact:
DoS
Where:
From remote
Short Description:
Oracle has acknowledged multiple vulnerabilities in Apache HTTP Server included in Solaris, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]


Oracle Solaris OpenSSL ClientHello Ciphersuite Downgrade Vulnerability
Vendor Patch. Secunia Advisory 3 of 35 in 2014. 169 views.
Release Date:
2014-10-16
Secunia Advisory ID:
SA60446
Solution Status:
Vendor Patch
Criticality:
Impact:
Security Bypass
Where:
From remote
Short Description:
Oracle has acknowledged a vulnerability in OpenSSL included in Solaris, which can be exploited by malicious people to bypass certain security restrictions. [Read More]


Oracle Solaris WAN Boot OpenSSL Two Vulnerabilities
Vendor Patch. Secunia Advisory 4 of 35 in 2014. 154 views.
Release Date:
2014-10-16
Secunia Advisory ID:
SA60445
Solution Status:
Vendor Patch
Criticality:
Impact:
Security Bypass
Exposure of sensitive information
Where:
From remote
Short Description:
Oracle has acknowledged two vulnerabilities in WAN Boot included in Solaris, which can be exploited by malicious people to disclose potentially sensitive information and bypass certain security restrictions. [Read More]


Oracle Solaris XScreenSaver Insecure Temporary File Creation Vulnerability
Vendor Patch. Secunia Advisory 5 of 35 in 2014. 134 views.
Release Date:
2014-10-16
Secunia Advisory ID:
SA60434
Solution Status:
Vendor Patch
Criticality:
Impact:
Privilege escalation
Where:
Local system
Short Description:
Oracle has acknowledged a vulnerability in XScreenSaver included in Solaris, which can be exploited by malicious, local users to perform certain actions with escalated privileges. [Read More]


Oracle Solaris Multiple Vulnerabilities
Vendor Patch. Secunia Advisory 6 of 35 in 2014. 110 views.
Release Date:
2014-10-15
Secunia Advisory ID:
SA61593
Solution Status:
Vendor Patch
Criticality:
Impact:
Manipulation of data
Exposure of sensitive information
Privilege escalation
DoS
System access
Where:
From remote
Short Description:
Multiple vulnerabilities have been reported in Oracle Solaris, which can be exploited by malicious, local users to disclose potentially sensitive information, manipulate certain data, cause a DoS (Denial of Service), and gain escalated privileges and by malicious people to disclose potentially sensitive information, manipulate certain data, cause a DoS, and compromise a vulnerable system. [Read More]


Oracle Solaris GNU Bash Multiple Vulnerabilities
Vendor Patch. Secunia Advisory 7 of 35 in 2014. 457 views.
Release Date:
2014-10-02
Secunia Advisory ID:
SA61719
Solution Status:
Vendor Patch
Criticality:
Impact:
Unknown
DoS
System access
Where:
From remote
Short Description:
Oracle has acknowledged multiple vulnerabilities in GNU Bash included in Solaris, where one has an unknown impact and others can be exploited by malicious people to cause a DoS (Denial of Service) and compromise a vulnerable system. [Read More]


Oracle Solaris Samba Denial of Service Vulnerabilities
Vendor Patch. Secunia Advisory 8 of 35 in 2014. 268 views.
Release Date:
2014-09-19
Secunia Advisory ID:
SA61218
Solution Status:
Vendor Patch
Criticality:
Impact:
DoS
Where:
From local network
Short Description:
Oracle has acknowledged some vulnerabilities in Samba included in Solaris, which can be exploited by malicious users and malicious people to cause a DoS (Denial of Service). [Read More]


Oracle Solaris OpenSSL "OBJ_obj2txt()" Information Disclosure Vulnerability
Vendor Patch. Secunia Advisory 9 of 35 in 2014. 305 views.
Release Date:
2014-09-19
Secunia Advisory ID:
SA61214
Solution Status:
Vendor Patch
Criticality:
Impact:
Exposure of sensitive information
Where:
From remote
Short Description:
Oracle has acknowledged a vulnerability in OpenSSL included in Solaris, which can be exploited by malicious people to disclose potentially sensitive information. [Read More]


Oracle Solaris Firefox Unspecified Vulnerabilities
Vendor Patch. Secunia Advisory 10 of 35 in 2014. 243 views.
Release Date:
2014-09-19
Secunia Advisory ID:
SA61212
Solution Status:
Vendor Patch
Criticality:
Impact:
Unknown
Where:
From remote
Short Description:
Some vulnerabilities with an unknown impact have been reported in Firefox included in Solaris. [Read More]


Oracle Solaris X.Org Multiple Vulnerabilities
Unpatched. Secunia Advisory 11 of 35 in 2014. 253 views.
Release Date:
2014-07-16
Secunia Advisory ID:
SA59997
Solution Status:
Unpatched
Criticality:
Impact:
System access
Where:
From remote
Short Description:
Oracle has acknowledged multiple vulnerabilities in the X.Org package included in Solaris, which can be exploited by malicious people to compromise an application using the library. [Read More]


Oracle Solaris Multiple Vulnerabilities
Vendor Patch. Secunia Advisory 12 of 35 in 2014. 1,096 views.
Release Date:
2014-07-16
Secunia Advisory ID:
SA59504
Solution Status:
Vendor Patch
Criticality:
Impact:
Exposure of sensitive information
Privilege escalation
DoS
Where:
From remote
Short Description:
Multiple vulnerabilities have been reported in Oracle Solaris, which can be exploited by malicious, local users to cause a DoS (Denial of Service) and gain escalated privileges and by malicious users to disclose potentially sensitive information. [Read More]


Oracle Solaris Apache HTTP Server Two Denial of Service Vulnerabilities
Vendor Patch. Secunia Advisory 13 of 35 in 2014. 1,117 views.
Release Date:
2014-07-14
Secunia Advisory ID:
SA58230
Solution Status:
Vendor Patch
Criticality:
Impact:
DoS
Where:
From remote
Short Description:
Oracle has acknowledged two vulnerabilities in Apache HTTP Server included in Solaris, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]


Oracle Solaris OpenSSL SSL/TLS Handshake Security Issue
Vendor Patch. Secunia Advisory 14 of 35 in 2014. 508 views.
Release Date:
2014-06-20
Secunia Advisory ID:
SA59375
Solution Status:
Vendor Patch
Criticality:
Impact:
Manipulation of data
Exposure of sensitive information
Where:
From remote
Short Description:
Oracle has acknowledged a security issue in OpenSSL included in Solaris, which can be exploited by malicious people to disclose potentially sensitive information and manipulate certain data. [Read More]


Oracle Solaris WAN Boot OpenSSL SSL/TLS Handshake Security Issue
Vendor Patch. Secunia Advisory 15 of 35 in 2014. 523 views.
Release Date:
2014-06-20
Secunia Advisory ID:
SA59380
Solution Status:
Vendor Patch
Criticality:
Impact:
Manipulation of data
Exposure of sensitive information
Where:
From local network
Short Description:
Oracle has acknowledged a security issue in WAN Boot included in Solaris, which can be exploited by malicious people to disclose potentially sensitive information and manipulate certain data. [Read More]


Oracle Solaris LibTIFF Buffer Overflow Vulnerability
Vendor Patch. Secunia Advisory 16 of 35 in 2014. 672 views.
Release Date:
2014-06-20
Secunia Advisory ID:
SA59359
Solution Status:
Vendor Patch
Criticality:
Impact:
System access
Where:
From remote
Short Description:
Oracle has acknowledged a vulnerability in LibTIFF included in Solaris, which can be exploited by malicious people to compromise an application using the library. [Read More]


Oracle Solaris Python "sock_recvfrom_into()" Buffer Overflow Vulnerability
Vendor Patch. Secunia Advisory 17 of 35 in 2014. 422 views.
Release Date:
2014-05-28
Secunia Advisory ID:
SA58600
Solution Status:
Vendor Patch
Criticality:
Impact:
System access
Where:
From remote
Short Description:
Oracle has acknowledged a vulnerability in Python included in Solaris, which can be exploited by malicious people to potentially compromise a vulnerable system. [Read More]


Oracle Solaris Apache Tomcat Multiple Vulnerabilities
Unpatched. Secunia Advisory 18 of 35 in 2014. 489 views.
Release Date:
2014-05-26
Secunia Advisory ID:
SA58959
Solution Status:
Unpatched
Criticality:
Impact:
Spoofing
Exposure of sensitive information
Manipulation of data
Hijacking
Where:
From remote
Short Description:
Oracle has acknowledged multiple vulnerabilities in Apache Tomcat included in Solaris, which can be exploited by malicious people to disclose potentially sensitive information, conduct spoofing and session fixation attacks, and manipulate certain data. [Read More]


Oracle Solaris libgcrypt RSA Secret Key Disclosure Weakness
Unpatched. Secunia Advisory 19 of 35 in 2014. 442 views.
Release Date:
2014-05-13
Secunia Advisory ID:
SA58603
Solution Status:
Unpatched
Criticality:
Impact:
Exposure of sensitive information
Where:
Local system
Short Description:
Oracle has acknowledged a weakness in libgcrypt included in Solaris, which can be exploited by malicious, local users to potentially disclose sensitive information. [Read More]


Oracle Solaris Two Vulnerabilities
Vendor Patch. Secunia Advisory 20 of 35 in 2014. 371 views.
Release Date:
2014-04-16
Secunia Advisory ID:
SA58035
Solution Status:
Vendor Patch
Criticality:
Impact:
Manipulation of data
Exposure of sensitive information
DoS
Where:
Local system
Short Description:
Two vulnerabilities have been reported in Oracle Solaris, which can be exploited by malicious, local users to disclose sensitive information, manipulate certain data, and cause a DoS (Denial of Service). [Read More]


Oracle Solaris Multiple Vulnerabilities
Vendor Patch. Secunia Advisory 21 of 35 in 2014. 447 views.
Release Date:
2014-04-16
Secunia Advisory ID:
SA57934
Solution Status:
Vendor Patch
Criticality:
Impact:
Manipulation of data
Exposure of sensitive information
DoS
Where:
Local system
Short Description:
Multiple vulnerabilities have been reported in Oracle Solaris, which can be exploited by malicious, local users to disclose sensitive information, manipulate certain data, and cause a DoS (Denial of Service). [Read More]


Oracle Solaris FreeType BDF Glyph Processing Buffer Overflow Vulnerability
Vendor Patch. Secunia Advisory 22 of 35 in 2014. 388 views.
Release Date:
2014-04-16
Secunia Advisory ID:
SA58043
Solution Status:
Vendor Patch
Criticality:
Impact:
System access
Where:
From remote
Short Description:
Oracle has acknowledged a vulnerability in FreeType included in Oracle Solaris, which can be exploited by malicious people to compromise an application using the library. [Read More]


Oracle Solaris GnuTLS Certificate Verification Vulnerabilities
Vendor Patch. Secunia Advisory 23 of 35 in 2014. 388 views.
Release Date:
2014-04-16
Secunia Advisory ID:
SA58042
Solution Status:
Vendor Patch
Criticality:
Impact:
Spoofing
Where:
From remote
Short Description:
Oracle has acknowledged some vulnerabilities in GnuTLS included in Oracle Solaris, which can be exploited by malicious people to conduct spoofing attacks. [Read More]


Oracle Solaris XScreenSaver Security Bypass Weakness
Vendor Patch. Secunia Advisory 24 of 35 in 2014. 357 views.
Release Date:
2014-04-16
Secunia Advisory ID:
SA58041
Solution Status:
Vendor Patch
Criticality:
Impact:
Security Bypass
Where:
Local system
Short Description:
Oracle has acknowledged a weakness in XScreenSaver included in Oracle Solaris, which can be exploited by malicious people with physical access to bypass certain security restrictions. [Read More]


Oracle Solaris Apache Tomcat Multiple Vulnerabilities
Vendor Patch. Secunia Advisory 25 of 35 in 2014. 650 views.
Release Date:
2014-04-02
Secunia Advisory ID:
SA57678
Solution Status:
Vendor Patch
Criticality:
Impact:
DoS
Where:
From remote
Short Description:
Oracle has acknowledged multiple vulnerabilities in Apache Tomcat included in Oracle Solaris, which can be exploited by malicious people to bypass certain security restrictions and cause a DoS (Denial of Service). [Read More]


Oracle Solaris Quagga ospfd LSA Handling Buffer Overflow Vulnerability
Vendor Patch. Secunia Advisory 26 of 35 in 2014. 555 views.
Release Date:
2014-04-02
Secunia Advisory ID:
SA57682
Solution Status:
Vendor Patch
Criticality:
Impact:
System access
Where:
From local network
Short Description:
Oracle has acknowledged a vulnerability in Quagga included in Oracle Solaris, which can be exploited by malicious people to compromise a vulnerable system. [Read More]


Oracle Solaris ICU Unspecified Race Condition Vulnerability
Vendor Patch. Secunia Advisory 27 of 35 in 2014. 438 views.
Release Date:
2014-02-26
Secunia Advisory ID:
SA57155
Solution Status:
Vendor Patch
Criticality:
Impact:
Unknown
Where:
From remote
Short Description:
Oracle has acknowledged a vulnerability with an unknown impact in International Components for Unicode (ICU) included in Solaris. [Read More]


Oracle Solaris X.Org libXfont "bdfReadCharacters()" Buffer Overflow Vulnerability
Vendor Patch. Secunia Advisory 28 of 35 in 2014. 531 views.
Release Date:
2014-02-26
Secunia Advisory ID:
SA57152
Solution Status:
Vendor Patch
Criticality:
Impact:
System access
Where:
From remote
Short Description:
Oracle has acknowledged a vulnerability in X.Org libXfont included in Solaris, which can be exploited by malicious people to compromise an application using the library. [Read More]


Oracle Solaris ISC BIND NSEC3-Signed Zones Queries Handling Denial of Service Vulnerability
Vendor Patch. Secunia Advisory 29 of 35 in 2014. 434 views.
Release Date:
2014-02-26
Secunia Advisory ID:
SA57153
Solution Status:
Vendor Patch
Criticality:
Impact:
DoS
Where:
From remote
Short Description:
Oracle has acknowledged a vulnerability in ISC BIND included in Solaris, which can be exploited by malicious people to cause a DoS (Denial of Service). [Read More]


Oracle Solaris libXtsol Unspecified Vulnerability
Vendor Patch. Secunia Advisory 30 of 35 in 2014. 523 views.
Release Date:
2014-02-26
Secunia Advisory ID:
SA57146
Solution Status:
Vendor Patch
Criticality:
Impact:
Unknown
Where:
From remote
Short Description:
A vulnerability with an unknown impact has been reported in libXtsol included in Solaris. [Read More]


Oracle Solaris GNU Texinfo Buffer Overflow Vulnerability
Vendor Patch. Secunia Advisory 31 of 35 in 2014. 1,283 views.
Release Date:
2014-02-20
Secunia Advisory ID:
SA56724
Solution Status:
Vendor Patch
Criticality:
Impact:
System access
Where:
From remote
Short Description:
Oracle has acknowledged a vulnerability in GNU Texinfo included in Solaris, which can be exploited by malicious people to potentially compromise a vulnerable system. [Read More]


Oracle Solaris Samba DCE-RPC Buffer Overflow Vulnerability
Vendor Patch. Secunia Advisory 32 of 35 in 2014. 453 views.
Release Date:
2014-02-20
Secunia Advisory ID:
SA57008
Solution Status:
Vendor Patch
Criticality:
Impact:
System access
Where:
From remote
Short Description:
Oracle has acknowledged a vulnerability in Samba included in Solaris, which can be exploited by malicious people to compromise a vulnerable system. [Read More]


Oracle Solaris Samba Security Bypass Security Issue
Vendor Patch. Secunia Advisory 33 of 35 in 2014. 916 views.
Release Date:
2014-01-15
Secunia Advisory ID:
SA56508
Solution Status:
Vendor Patch
Criticality:
Impact:
Security Bypass
Where:
From local network
Short Description:
Oracle has acknowledged a security issue in the samba package included in Solaris, which can be exploited by malicious users to bypass certain security restrictions. [Read More]


Oracle Solaris libxslt Multiple Vulnerabilities
Vendor Patch. Secunia Advisory 34 of 35 in 2014. 478 views.
Release Date:
2014-01-15
Secunia Advisory ID:
SA56519
Solution Status:
Vendor Patch
Criticality:
Impact:
Exposure of system information
System access
Where:
From remote
Short Description:
Oracle has acknowledged multiple vulnerabilities in the libxslt package included in Solaris, which can be exploited by malicious people to disclose system information and compromise an application using the library. [Read More]


Oracle Solaris Multiple Vulnerabilities
Vendor Patch. Secunia Advisory 35 of 35 in 2014. 772 views.
Release Date:
2014-01-15
Secunia Advisory ID:
SA56488
Solution Status:
Vendor Patch
Criticality:
Impact:
Manipulation of data
Exposure of sensitive information
DoS
Where:
From remote
Short Description:
Multiple vulnerabilities have been reported in Oracle Solaris, which can be exploited by malicious, local users to disclose sensitive information, manipulate certain data, and cause a DoS (Denial of Service) and by malicious people to manipulate certain data. [Read More]





Discuss this Product
A new thread in our forum is automatically created for each Product. Activate the thread by commenting/discussing below.
Subject: Sun Solaris 10.x 
No posts yet

-

You must be logged in to post a comment.



 Products Solutions Customers Partner Resources Company
 
 Corporate
Vulnerability Intelligence Manager (VIM)
Corporate Software Inspector (CSI)
Consumer
Personal Software Inspector (PSI)
Online Software Inspector (OSI)
 Industry
Compliance
Technology
Integration
 Customers
Testimonials
 VARS
MSSP
Technology Partners
References
 Reports
Webinars
Events
 About us
Careers
Memberships
Newsroom


 
© 2002-2014 Secunia ApS - Rued Langgaards Vej 8, 4th floor, DK-2300 Copenhagen, Denmark - +45 7020 5144
Terms & Conditions and Copyright - Privacy - Report Vulnerability - Disclaimer