CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1CVE-2017-3622 – Solaris - 'EXTREMEPARR' dtappgather Privilege Escalation
https://notcve.org/view.php?id=CVE-2017-3622
Vulnerability in the Solaris component of Oracle Sun Systems Products Suite (subcomponent: Common Desktop Environment (CDE)). The supported version that is affected is 10. Easily "exploitable" vulnerability allows low privileged attacker with logon to the infrastructure where Solaris executes to compromise Solaris. Successful attacks of this vulnerability can result in takeover of Solaris. Note: CVE-2017-3622 is assigned for the "Extremeparr". • https://www.exploit-db.com/exploits/45479 http://www.oracle.com/technetwork/security-advisory/cpuapr2017-3236618.html http://www.securityfocus.com/bid/97774 http://www.securitytracker.com/id/1038292 https://github.com/HackerFantastic/Public/blob/master/exploits/dtappgather-poc.sh •
CVSS: 5.0EPSS: 0%CPEs: 2EXPL: 0CVE-2016-5553
https://notcve.org/view.php?id=CVE-2016-5553
Unspecified vulnerability in Oracle Sun Solaris 10 and 11.3 allows local users to affect availability via unknown vectors. Vulnerabilidad no especificada en Oracle Sun Solaris 10 y 11.3 permite a usuarios locales afectar la disponibilidad a través de vectores desconocidos. • http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html http://www.securityfocus.com/bid/93759 http://www.securitytracker.com/id/1037048 •
CVSS: 4.1EPSS: 0%CPEs: 2EXPL: 0CVE-2016-5559
https://notcve.org/view.php?id=CVE-2016-5559
Unspecified vulnerability in Oracle Sun Solaris 10 and 11.3 allows local users to affect integrity via vectors related to Kernel. Vulnerabilidad no especificada en Oracle Sun Solaris 10 y 11.3 permite a usuarios locales afectar la integridad a través de vectores relacionados con Kernel. • http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html http://www.securityfocus.com/bid/93722 http://www.securitytracker.com/id/1037048 •
CVSS: 2.8EPSS: 0%CPEs: 1EXPL: 0CVE-2016-5480
https://notcve.org/view.php?id=CVE-2016-5480
Unspecified vulnerability in Oracle Sun Solaris 10 allows local users to affect integrity via vectors related to Bash. Vulnerabilidad no especificada en Oracle Sun Solaris 10 permite a usuarios locales afectar la integridad a través de vectores relacionados con Bash. • http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html http://www.securityfocus.com/bid/93717 http://www.securitytracker.com/id/1037048 •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2016-5544
https://notcve.org/view.php?id=CVE-2016-5544
Unspecified vulnerability in Oracle Sun Solaris 10 and 11.3 allows local users to affect confidentiality, integrity, and availability via vectors related to Kernel/X86. Vulnerabilidad no especificada en Oracle Sun Solaris 10 y 11.3 permite a usuarios locales afectar la confidencialidad, la integridad y la disponibilidad a través de vectores relacionados con Kernel/X86. • http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html http://www.securityfocus.com/bid/93746 http://www.securitytracker.com/id/1037048 •