CVSS: 7.2EPSS: 0%CPEs: 4EXPL: 0CVE-2009-1763
https://notcve.org/view.php?id=CVE-2009-1763
Unspecified vulnerability in the Solaris Secure Digital slot driver (aka sdhost) in Sun OpenSolaris snv_105 through snv_108 on the x86 platform allows local users to gain privileges or cause a denial of service (filesystem or memory corruption) via unknown vectors. Vulerabilidad no específica en el slot driver de Solaris Secure Digital (también conocido como sdhost) en Sun OpenSolaris snv_105 hasta snv_108 en la plataforma x86, permite a los usuarios locales obtener provilegios o provocar una denegación de servicio (corrupción del sistema de ficheros o memoria) a través de vectores desconocidos. • http://sunsolve.sun.com/search/document.do?assetkey=1-66-259408-1 http://www.securityfocus.com/bid/35069 http://www.securitytracker.com/id?1022271 http://www.vupen.com/english/advisories/2009/1410 https://exchange.xforce.ibmcloud.com/vulnerabilities/50687 •
CVSS: 4.9EPSS: 0%CPEs: 227EXPL: 1CVE-2009-1478 – Solaris 10 / OpenSolaris - 'dtrace' Local Kernel Denial of Service (PoC)
https://notcve.org/view.php?id=CVE-2009-1478
Multiple unspecified vulnerabilities in the DTrace ioctl handlers in Sun Solaris 10, and OpenSolaris before snv_114, allow local users to cause a denial of service (panic) via unknown vectors. Múltiples vulnerabilidades no especificadas en los manipuladores DTrace ioctl en Sun Solaris v10 y OpenSolaris anteriores a snv_114, permiten a usuarios locales provocar una denegación de servicio (panic) a través de vectores desconocidos. • https://www.exploit-db.com/exploits/8597 http://osvdb.org/54138 http://secunia.com/advisories/34836 http://secunia.com/advisories/35098 http://sunsolve.sun.com/search/document.do?assetkey=1-66-257708-1 http://support.avaya.com/elmodocs2/security/ASA-2009-171.htm http://www.securityfocus.com/bid/34753 http://www.securitytracker.com/id?1022143 http://www.vupen.com/english/advisories/2009/1199 http://www.vupen.com/english/advisories/2009/1378 https://exchange.xforce.ibm •
CVSS: 4.9EPSS: 0%CPEs: 4EXPL: 0CVE-2009-1359
https://notcve.org/view.php?id=CVE-2009-1359
Unspecified vulnerability in the SCTP sockets implementation in Sun OpenSolaris snv_106 through snv_107 allows local users to cause a denial of service (panic) via unknown vectors. Vulnerabilidad sin especificar en la implementación de los sockets en Sun OpenSolaris snv_106 hasta la snv_107 permite a usuarios locales producir una denegación de servicio (panic) a través de vectores desconocidos. • http://sunsolve.sun.com/search/document.do?assetkey=1-66-257331-1 http://www.securityfocus.com/bid/34628 http://www.vupen.com/english/advisories/2009/1120 •
CVSS: 2.1EPSS: 0%CPEs: 226EXPL: 0CVE-2009-1276
https://notcve.org/view.php?id=CVE-2009-1276
XScreenSaver in Sun Solaris 10 and OpenSolaris before snv_109, and Solaris 8 and 9 with GNOME 2.0 or 2.0.2, allows physically proximate attackers to obtain sensitive information by reading popup windows, which are displayed even when the screen is locked, as demonstrated by Thunderbird new-mail notifications. XScreenSaver en Sun Solaris v10 and OpenSolaris anteriores a snv_109, y Solaris v8 y v9 con GNOME v2.0 o v2.0.2, permite a atacantes próximos físicamente conseguir información sensible, leyendo las ventanas "PopUp"s, que se muestran cuando la pantalla se bloquea, como se demostró en las notificaciones de nuevo mensaje de Thunderbird. • http://securitytracker.com/id?1022009 http://sunsolve.sun.com/search/document.do?assetkey=1-21-120094-22-1 http://sunsolve.sun.com/search/document.do?assetkey=1-66-255308-1 http://www.securityfocus.com/bid/34421 http://www.vupen.com/english/advisories/2009/0978 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 4.4EPSS: 0%CPEs: 227EXPL: 0CVE-2009-1207
https://notcve.org/view.php?id=CVE-2009-1207
Race condition in the dircmp script in Sun Solaris 8 through 10, and OpenSolaris snv_01 through snv_111, allows local users to overwrite arbitrary files, probably involving a symlink attack on temporary files. Condición Race en la secuencia de comandos en Sun Solaris v8 hasta v10, y OpenSolaris snv_01 hasta snv_111, permite a los usuario locales sobrescribir arbitrariamente archivos, probablemente involucra un ataque de enlace simbólico en archivos temporales. • http://secunia.com/advisories/34558 http://secunia.com/advisories/34813 http://sunsolve.sun.com/search/document.do?assetkey=1-21-138897-01-1 http://sunsolve.sun.com/search/document.do?assetkey=1-66-253468-1 http://support.avaya.com/elmodocs2/security/ASA-2009-140.htm http://www.securityfocus.com/bid/34316 http://www.vupen.com/english/advisories/2009/1105 https://exchange.xforce.ibmcloud.com/vulnerabilities/49526 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mit • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •