Page 15 of 559 results (0.012 seconds)

CVSS: 4.9EPSS: 0%CPEs: 214EXPL: 0

The (1) sendfile and (2) sendfilev functions in Sun Solaris 8 through 10, and OpenSolaris before snv_110, allow local users to cause a denial of service (panic) via vectors related to vnode function calls. Las funciones (1) sendfile y (2) sendfilev en Sun Solaris 8 a10 y OpenSolaris en versiones anteriores a snv_110, permiten a atacantes remotos provocar una denegación de servicio (panic) a través de vectores relacionados con llamadas a funciones vnode. • http://secunia.com/advisories/36400 http://sunsolve.sun.com/search/document.do?assetkey=1-21-127721-02-1 http://sunsolve.sun.com/search/document.do?assetkey=1-66-258588-1 http://sunsolve.sun.com/search/document.do?assetkey=1-77-1020445.1-1 http://www.securityfocus.com/bid/36083 http://www.vupen.com/english/advisories/2009/2316 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5692 •

CVSS: 3.5EPSS: 0%CPEs: 4EXPL: 0

Sun Virtual Desktop Infrastructure (VDI) 3.0, when anonymous binding is enabled, does not properly handle a client's attempt to establish an authenticated and encrypted connection, which might allow remote attackers to read cleartext VDI configuration-data requests by sniffing LDAP sessions on the network. Sun Virtual Desktop Infrastructure (VDI) v3.0, cuando la vinculación anónima esta activada, no se maneja adecuadamente el intento del cliente de establecer una conexión cifrada y autenticada, lo que permitiría a atacantes remotos leer las peticiones de datos de configuración mediante el escaneo de las sesiones de LDAP en la red. • http://secunia.com/advisories/36330 http://sunsolve.sun.com/search/document.do?assetkey=1-21-141481-02-1 http://sunsolve.sun.com/search/document.do?assetkey=1-66-265488-1 http://www.vupen.com/english/advisories/2009/2282 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •

CVSS: 4.9EPSS: 0%CPEs: 226EXPL: 0

XScreenSaver in Sun Solaris 9 and 10, OpenSolaris before snv_120, and X11 6.4.1 for Solaris 8, when the Xorg or Xnewt server is used, allows physically proximate attackers to obtain sensitive information by reading popup windows, which are displayed even when the screen is locked, a different vulnerability than CVE-2009-1276. Xscreensaver en Sun Solaris v9 y v10, OpenSolaris anterior a snv_120, y X11 v6.4.1 para Solaris v8, cuando el servidor Xorg o Xnewt es utilizado, permite a atacantes físicamente próximos obtener información sensible mediante la lectura de ventanas emergentes, que son mostrados incluso cuando la pantalla está bloqueado, una vulnerabilidad diferente que CVE-2009-1276. • http://secunia.com/advisories/36170 http://sunsolve.sun.com/search/document.do?assetkey=1-21-115298-02-1 http://sunsolve.sun.com/search/document.do?assetkey=1-66-258928-1 http://sunsolve.sun.com/search/document.do?assetkey=1-77-1020463.1-1 http://www.securityfocus.com/bid/35964 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5838 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •

CVSS: 6.8EPSS: 0%CPEs: 170EXPL: 0

Unspecified vulnerability in Solaris Trusted Extensions in Sun Solaris 10, and OpenSolaris snv_37 through snv_120, allows remote attackers to cause a denial of service (panic) via vectors involving the parsing of labeled packets. Vulnerabilidad no específica en Solaris Trusted Extensions en Sun Solaris v10, y OpenSolaris snv_37 hasta snv_120, permite a atacantes remotos provocar una denegación de servicio (panic) a través de vectores que implican el analizador de paguetes etiquetados. • http://secunia.com/advisories/36040 http://securitytracker.com/id?1022628 http://sunsolve.sun.com/search/document.do?assetkey=1-66-264808-1 http://www.securityfocus.com/bid/35882 http://www.vupen.com/english/advisories/2009/2089 https://exchange.xforce.ibmcloud.com/vulnerabilities/52129 •

CVSS: 4.9EPSS: 0%CPEs: 340EXPL: 0

Race condition in the Solaris Auditing subsystem in Sun Solaris 9 and 10 and OpenSolaris before snv_121, when extended file attributes are used, allows local users to cause a denial of service (panic) via vectors related to "pathnames for invalid fds." Condición de carrera en el subsistema Solaris Auditing en Solaris 9 y 10 y OpenSolaris anterior a snv_121, cuando se usan los atributos de archivo extendidos, permite a usuarios locales provocar una denegación de servicio(panic) a través de vectores relacionados a "nombres de ruta para fds no válidos". • http://secunia.com/advisories/36042 http://sunsolve.sun.com/search/document.do?assetkey=1-21-122300-42-1 http://sunsolve.sun.com/search/document.do?assetkey=1-66-264429-1 http://sunsolve.sun.com/search/document.do?assetkey=1-77-1020766.1-1 http://www.securityfocus.com/bid/35835 http://www.vupen.com/english/advisories/2009/2022 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6168 • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •