CVSS: 4.9EPSS: 0%CPEs: 3EXPL: 2CVE-2007-5225 – Solaris 8/9/10 - 'fifofs I_PEEK' Local Kernel Memory Leak
https://notcve.org/view.php?id=CVE-2007-5225
Integer signedness error in FIFO filesystems (named pipes) on Sun Solaris 8 through 10 allows local users to read the contents of unspecified memory locations via a negative maximum length value to the I_PEEK ioctl. Un error en la propiedad signedness en los sistemas de archivo FIFO (llamados tuberías) en Sun Solaris versión 8 hasta 10 permite a los usuarios locales leer el contenido de ubicaciones de memoria no especificadas por medio de un valor de longitud máxima negativo para el ioctl I_PEEK. • https://www.exploit-db.com/exploits/5227 http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=603 http://secunia.com/advisories/27024 http://secunia.com/advisories/27654 http://sunsolve.sun.com/search/document.do?assetkey=1-26-103061-1 http://support.avaya.com/elmodocs2/security/ASA-2007-463.htm http://www.securityfocus.com/archive/1/481501/100/0/threaded http://www.securityfocus.com/bid/25905 http://www.securitytracker.com/id?1018766 http://www.vupen.com/ • CWE-189: Numeric Errors •
CVSS: 7.6EPSS: 2%CPEs: 1EXPL: 0CVE-2007-4395
https://notcve.org/view.php?id=CVE-2007-4395
Multiple unspecified vulnerabilities in the Role Based Access Control (RBAC) functionality in Sun Solaris 8 allow remote attackers who know the password for a role to gain privileges via that role. Las múltiples vulnerabilidades no específicas en la funcionalidad de Role Based Access Control (RBAC) en Sun Solaris versión 8 permiten a los atacantes remotos que conocen la contraseña de un rol obtener privilegios por medio de ese rol. • http://osvdb.org/36614 http://secunia.com/advisories/26494 http://sunsolve.sun.com/search/document.do?assetkey=1-26-103029-1 http://www.securityfocus.com/bid/25353 http://www.securitytracker.com/id?1018582 http://www.vupen.com/english/advisories/2007/2916 https://exchange.xforce.ibmcloud.com/vulnerabilities/36080 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1941 •
CVSS: 4.3EPSS: 2%CPEs: 3EXPL: 0CVE-2007-4310
https://notcve.org/view.php?id=CVE-2007-4310
The finger daemon (in.fingerd) in Sun Solaris 7 through 9 allows remote attackers to list all accounts that have certain nonstandard GECOS fields via a request composed of a single digit, as demonstrated by a "finger 9@host" command, a different vulnerability than CVE-2001-1503. El demonio finger (in.fingerd) en Sun Solaris 7 hasta 9 permite a atacantes remotos listar todas las cuentas que tienen campos GECOS que no son estándar mediante una petición compuesta de un único dígito, como ha sido demostrado por un comando "finger 9@host", una vulnerabilidad diferente de CVE-2001-1503. • http://securityreason.com/securityalert/2996 http://www.securityfocus.com/archive/1/474858/100/100/threaded http://www.securityfocus.com/archive/1/474927/100/100/threaded •
CVSS: 6.9EPSS: 0%CPEs: 3EXPL: 0CVE-2007-3717
https://notcve.org/view.php?id=CVE-2007-3717
rcp on Sun Solaris 8, 9, and 10 before 20070710 does not properly call certain helper applications, which allows local users to gain privileges by creating files with certain names, possibly containing shell metacharacters or spaces, a similar issue to CVE-2006-0225. rcp en Sun Solaris 8, 9, y 10 versiones anteriores a 20070710 no invoca apropiadamente aplicaciones de ayuda determinadas, lo cual permite a usuarios locales obtener privilegios al crear ficheros con determinados nombres, posiblemente conteniendo meta-caracteres de consola o espacios, un asunto similar a CVE-2006-0225. • http://osvdb.org/36611 http://secunia.com/advisories/26024 http://secunia.com/advisories/26210 http://sunsolve.sun.com/search/document.do?assetkey=1-26-102978-1 http://support.avaya.com/elmodocs2/security/ASA-2007-319.htm http://www.vupen.com/english/advisories/2007/2494 https://exchange.xforce.ibmcloud.com/vulnerabilities/35334 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1772 •
CVSS: 10.0EPSS: 19%CPEs: 6EXPL: 0CVE-2007-3093
https://notcve.org/view.php?id=CVE-2007-3093
Unspecified vulnerability in the logging mechanism in Solaris Management Console (SMC) on Sun Solaris 8 through 10 before 20070605 allows remote attackers to execute arbitrary code via unspecified vectors, related to the WBEM server. Vulnerabilidad no especificada en el mecanismo de acceso de usuario en Solaris Management Console (SMC) en Sun Solaris 8 hasta 10 versiones anteriores a 20070605 permite a atacantes remotos ejecutar código de su elección mediante vectores no especificados, referidos al servidor WBEM. • http://osvdb.org/36590 http://secunia.com/advisories/25566 http://sunsolve.sun.com/search/document.do?assetkey=1-26-102903-1 http://www.securityfocus.com/bid/24327 http://www.securitytracker.com/id?1018206 http://www.vupen.com/english/advisories/2007/2077 https://exchange.xforce.ibmcloud.com/vulnerabilities/34734 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1680 •