CVSS: 3.6EPSS: 0%CPEs: 1EXPL: 0CVE-2010-3586
https://notcve.org/view.php?id=CVE-2010-3586
Unspecified vulnerability in Oracle Solaris 9 allows local users to affect confidentiality and integrity via unknown vectors related to XScreenSaver. Vulnerabilidad no especificada en Oracle Solaris v9 permite a usuarios locales afectar a la confidencialidad y la integridad a través de vectores desconocidos relacionados con XScreenSaver. • http://secunia.com/advisories/42984 http://www.oracle.com/technetwork/topics/security/cpujan2011-194091.html http://www.securityfocus.com/bid/45903 http://www.securitytracker.com/id?1024975 http://www.vupen.com/english/advisories/2011/0151 https://exchange.xforce.ibmcloud.com/vulnerabilities/64805 •
CVSS: 7.8EPSS: 32%CPEs: 4EXPL: 1CVE-2010-2632 – libc/glob - Resource Exhaustion / Remote ftpd-anonymous (Denial of Service)
https://notcve.org/view.php?id=CVE-2010-2632
Unspecified vulnerability in the FTP Server in Oracle Solaris 8, 9, 10, and 11 Express allows remote attackers to affect availability. NOTE: the previous information was obtained from the January 2011 CPU. Oracle has not commented on claims from a reliable researcher that this is an issue in the glob implementation in libc that allows remote authenticated users to cause a denial of service (CPU and memory consumption) via crafted glob expressions that do not match any pathnames. Vulnerabilidad no especificada en FTP Server para Oracle Solaris v8, v9, v10, v11 y Express permite a atacantes remotos afectar a la disponibilidad, relacionado con FTP. FreeBSD version 9.1 suffers from a remote ftpd denial of service vulnerability. • https://www.exploit-db.com/exploits/15215 http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10598 http://secunia.com/advisories/42984 http://secunia.com/advisories/43433 http://secunia.com/advisories/55212 http://securityreason.com/achievement_securityalert/89 http://securityreason.com/achievement_securityalert/97 http://www.oracle.com/technetwork/topics/security/cpujan2011-194091.html http://www.securitytracker.com/id?1024975 http://www.vupen.com/english/advisories/2011/0151 https:/ •
CVSS: 2.1EPSS: 0%CPEs: 78EXPL: 0CVE-2009-4080
https://notcve.org/view.php?id=CVE-2009-4080
Multiple unspecified vulnerabilities in ldap_cachemgr (aka the LDAP client configuration cache daemon) in Sun Solaris 9 and 10, and OpenSolaris before snv_78, allow local users to cause a denial of service (daemon crash) via vectors involving multiple serviceSearchDescriptor attributes and a call to the getldap_lookup function, and unspecified other vectors. Múltiples vulnerabilidades no especificadas en ldap_cachemgr (también conocido como demonio de la caché del configuración del cliente LDAP= en Sun Solaris V9 y V10 y OpenSolaris anteriores a snv_79, permite a a usuarios locales provocar una denegación de servicio (caída del demonio) a través de vectores que implican múltiples atributos serviceSearchDescriptor y una llamada a la función getldap_lookup y otros vectores no específicos. • http://osvdb.org/60514 http://secunia.com/advisories/37505 http://secunia.com/advisories/37506 http://sunsolve.sun.com/search/document.do?assetkey=1-21-112960-69-1 http://sunsolve.sun.com/search/document.do?assetkey=1-66-231402-1 http://www.securityfocus.com/bid/37129 http://www.securitytracker.com/id?1023239 http://www.vupen.com/english/advisories/2009/3336 •
CVSS: 4.0EPSS: 0%CPEs: 5EXPL: 0CVE-2008-5009
https://notcve.org/view.php?id=CVE-2008-5009
Race condition in the s_xout kernel module in Sun Solstice X.25 9.2, when running on a multiple CPU machine, allows local users to cause a denial of service (panic) via vectors involving reading the /dev/xty file. Condición de carrera en el módulo del kernel s_xout en Sun Solstice X.25 9.2, cuando se ejecuta en una máquina con múltiples CPUs, permite a usuarios locales provocar una denegación de servicio (pánico) mediante vectores que involucran la lectura del archivo /dev/xty. • http://secunia.com/advisories/32667 http://securitytracker.com/id?1021156 http://sunsolve.sun.com/search/document.do?assetkey=1-21-108669-21-1 http://sunsolve.sun.com/search/document.do?assetkey=1-21-108670-21-1 http://sunsolve.sun.com/search/document.do?assetkey=1-26-243106-1 http://www.securityfocus.com/bid/32215 http://www.vupen.com/english/advisories/2008/3087 https://exchange.xforce.ibmcloud.com/vulnerabilities/46466 • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •
CVSS: 10.0EPSS: 29%CPEs: 1EXPL: 1CVE-2008-4619 – Solaris 9 PortBind - XDR-DECODE 'taddr2uaddr()' Remote Denial of Service
https://notcve.org/view.php?id=CVE-2008-4619
The RPC subsystem in Sun Solaris 9 allows remote attackers to cause a denial of service (daemon crash) via a crafted request to procedure 8 in program 100000 (rpcbind), related to the XDR_DECODE operation and the taddr2uaddr function. NOTE: this might be a duplicate of CVE-2007-0165. El subsistema RPC en Sun Solaris 9 permite a atacantes remotos provocar una denegación de servicio (caída del demonio) mediante una petición al procedimiento 8 especialmente construida, relacionada con la operación XDR_DECODE y la función taddr2uaddr. • https://www.exploit-db.com/exploits/6775 http://secunia.com/advisories/32475 http://securityreason.com/securityalert/4440 http://sunsolve.sun.com/search/document.do?assetkey=1-66-200412-1 http://www.openwall.com/lists/oss-security/2008/10/28/2 http://www.openwall.com/lists/oss-security/2008/10/29/1 http://www.openwall.com/lists/oss-security/2008/10/31/2 http://www.vupen.com/english/advisories/2008/2945 https://exchange.xforce.ibmcloud.com/vulnerabilities/46057 https •