CVSS: 7.5EPSS: 79%CPEs: 14EXPL: 3CVE-2004-0790 – Multiple OS (Win32/Aix/Cisco) - Crafted ICMP Messages Denial of Service (MS05-019)
https://notcve.org/view.php?id=CVE-2004-0790
12 Apr 2005 — Multiple TCP/IP and ICMP implementations allow remote attackers to cause a denial of service (reset TCP connections) via spoofed ICMP error messages, aka the "blind connection-reset attack." NOTE: CVE-2004-0790, CVE-2004-0791, and CVE-2004-1060 have been SPLIT based on different attacks; CVE-2005-0065, CVE-2005-0066, CVE-2005-0067, and CVE-2005-0068 are related identifiers that are SPLIT based on the underlying vulnerability. While CVE normally SPLITs based on vulnerability, the attack-based identifiers exi... • https://www.exploit-db.com/exploits/948 •
CVSS: 7.5EPSS: 26%CPEs: 4EXPL: 1CVE-2004-0791 – Multiple Vendor ICMP Implementation - Spoofed Source Quench Packet Denial of Service
https://notcve.org/view.php?id=CVE-2004-0791
12 Apr 2005 — Multiple TCP/IP and ICMP implementations allow remote attackers to cause a denial of service (network throughput reduction for TCP connections) via a blind throughput-reduction attack using spoofed Source Quench packets, aka the "ICMP Source Quench attack." NOTE: CVE-2004-0790, CVE-2004-0791, and CVE-2004-1060 have been SPLIT based on different attacks; CVE-2005-0065, CVE-2005-0066, CVE-2005-0067, and CVE-2005-0068 are related identifiers that are SPLIT based on the underlying vulnerability. While CVE norma... • https://www.exploit-db.com/exploits/25387 •
CVSS: 7.8EPSS: 0%CPEs: 6EXPL: 0CVE-2005-0816
https://notcve.org/view.php?id=CVE-2005-0816
20 Mar 2005 — Buffer overflow in newgrp in Solaris 7 through 9 allows local users to gain root privileges. • http://securitytracker.com/id?1013462 •
CVSS: 7.1EPSS: 0%CPEs: 4EXPL: 0CVE-2004-0481
https://notcve.org/view.php?id=CVE-2004-0481
23 Feb 2005 — The logging feature in kcms_configure in the KCMS package on Solaris 8 and 9, and possibly other versions, allows local users to corrupt arbitrary files via a symlink attack on the KCS_ClogFile file. • http://sunsolve.sun.com/search/document.do?assetkey=1-26-57706-1 •
CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0CVE-2005-0426
https://notcve.org/view.php?id=CVE-2005-0426
15 Feb 2005 — Unknown vulnerability in Solaris 8 and 9 allows remote attackers to cause a denial of service (panic) via "Heavy UDP Usage" that triggers a NULL dereference. Vulnerabilidad desconocida en Solaris 8 y 9 permite a atacantes remotos provocar la Denegación de Servicio (DoS) mediante ""Heavy UDP Usage"" que lanza una referencia a NULL. • http://sunsolve.sun.com/search/document.do?assetkey=1-26-57728-1 •
CVSS: 7.5EPSS: 0%CPEs: 3EXPL: 0CVE-2005-0447
https://notcve.org/view.php?id=CVE-2005-0447
15 Feb 2005 — Solaris 7, 8, and 9 allows remote attackers to cause a denial of service (hang) via a flood of certain ARP packets. • http://secunia.com/advisories/14286 •
CVSS: 9.8EPSS: 0%CPEs: 4EXPL: 0CVE-2005-0248
https://notcve.org/view.php?id=CVE-2005-0248
08 Feb 2005 — The Solaris Management Console (SMC) GUI for Solaris 8 and 9, when creating user accounts that are configured for password aging, creates the accounts with a blank password, which allows remote or local attackers to break into those accounts. • http://secunia.com/advisories/13803 •
CVSS: 7.8EPSS: 0%CPEs: 7EXPL: 0CVE-2004-1767
https://notcve.org/view.php?id=CVE-2004-1767
31 Dec 2004 — The kernel in Solaris 2.6, 7, 8, and 9 allows local users to gain privileges by loading arbitrary loadable kernel modules (LKM), possibly involving the modload function. • http://sunsolve.sun.com/search/document.do?assetkey=1-26-57479-1 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 9.1EPSS: 0%CPEs: 6EXPL: 0CVE-2004-2306
https://notcve.org/view.php?id=CVE-2004-2306
31 Dec 2004 — Sun Solaris 7 through 9, when Basic Security Module (BSM) is enabled and the SUNWscpu package has been removed as a result of security hardening, disables mail alerts from the audit_warn script, which might allow attackers to escape detection. • http://sunsolve.sun.com/search/document.do?assetkey=1-26-57483-1 •
CVSS: 7.2EPSS: 0%CPEs: 8EXPL: 2CVE-2004-2686 – Sun Solaris 2.6/7.0/8/9 - vfs_getvfssw function Privilege Escalation
https://notcve.org/view.php?id=CVE-2004-2686
31 Dec 2004 — Directory traversal vulnerability in the vfs_getvfssw function in Solaris 2.6, 7, 8, and 9 allows local users to load arbitrary kernel modules via crafted (1) mount or (2) sysfs system calls. NOTE: this might be the same issue as CVE-2004-1767, but there are insufficient details to be sure. • https://www.exploit-db.com/exploits/23874 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •