CVSS: 9.0EPSS: 2%CPEs: 6EXPL: 0CVE-2007-3094
https://notcve.org/view.php?id=CVE-2007-3094
Unspecified vulnerability in the authentication mechanism in Solaris Management Console (SMC) on Sun Solaris 8 through 10 before 20070605 allows remote authenticated users to execute arbitrary code via unspecified vectors, related to the WBEM server. Vulnerabilidad no especificada en en el mecanismo de autenticación de Solaris Management Console (SMC) en Sun Solaris 8 hasta 10 anterior al 05/06/2007 permite a usuarios autenticados remotamente ejecutar código de su elección a través de vectores no especificados, relacionados con el servidor WBEM. • http://osvdb.org/36591 http://sunsolve.sun.com/search/document.do?assetkey=1-26-102902-1 http://www.securityfocus.com/bid/24326 http://www.securitytracker.com/id?1018205 http://www.vupen.com/english/advisories/2007/2076 https://exchange.xforce.ibmcloud.com/vulnerabilities/34735 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1341 •
CVSS: 7.8EPSS: 7%CPEs: 2EXPL: 0CVE-2007-2989
https://notcve.org/view.php?id=CVE-2007-2989
The libike library in Sun Solaris 9 before 20070529 contains a logic error related to a certain pointer, which allows remote attackers to cause a denial of service (in.iked daemon crash) by sending certain UDP packets with a source port different from 500. NOTE: this issue might overlap CVE-2006-2298. La biblioteca libike de Sun Solaris 9 versiones anteriores a 20070529 contiene un error lógico referido a un puntero concreto, lo cual permite a atacantes remotos provocar una denegación de servicio (caída de demonio in.iked) al enviar paquetes UDP concretos con un puerto origen distinto al 500. NOTA. Esta vulnerabilidad podría solaparse con CVE-2006-2298. • http://osvdb.org/36584 http://secunia.com/advisories/25465 http://secunia.com/advisories/25661 http://sunsolve.sun.com/search/document.do?assetkey=1-26-102745-1 http://support.avaya.com/elmodocs2/security/ASA-2007-227.htm http://www.securityfocus.com/bid/24209 http://www.securitytracker.com/id?1018134 http://www.vupen.com/english/advisories/2007/1982 http://www.vupen.com/english/advisories/2007/2188 https://exchange.xforce.ibmcloud.com/vulnerabilities/34576 https://oval. •
CVSS: 5.0EPSS: 6%CPEs: 6EXPL: 1CVE-2007-2882
https://notcve.org/view.php?id=CVE-2007-2882
Unspecified vulnerability in the NFS client module in Sun Solaris 8 through 10 before 20070524, when operating as an NFS server, allows remote attackers to cause a denial of service (crash) via certain Access Control List (acl) packets. Vulnerabilidad no especificada en el módulo cliente NFS de Sun Solaris 8 hasta 10 anterior al 24/05/2007, cuando opera como un servidor NFS, permite a atacantes remotos provocar una denegación de servicio (caída) mediante determinados paquetes de Lista de Control de Acceso (Access Control List o acl). • http://osvdb.org/34908 http://secunia.com/advisories/25403 http://secunia.com/advisories/25879 http://sunsolve.sun.com/search/document.do?assetkey=1-26-102911-1 http://support.avaya.com/elmodocs2/security/ASA-2007-245.htm http://www.securityfocus.com/bid/24145 http://www.securitytracker.com/id?1018129 http://www.vupen.com/english/advisories/2007/1943 https://exchange.xforce.ibmcloud.com/vulnerabilities/34504 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre. •
CVSS: 4.7EPSS: 0%CPEs: 2EXPL: 0CVE-2007-2465
https://notcve.org/view.php?id=CVE-2007-2465
Unspecified vulnerability in Sun Solaris 9, when Solaris Auditing (BSM) is enabled for file read, write, attribute modify, create, or delete audit classes, allows local users to cause a denial of service (panic) via unknown vectors, possibly related to the audit_savepath function. Vulnerabilidad no especificada en Sun Solaris 9, cuando Solaris Auditing (BSM) está habilitado para la lectura, escritura, modificación de atributos o borrado de clases de auditoria de fichero, permite a usuarios locales provocar denegación de servicio (panic) a través de vectores desconocidos, posiblemente relacionado con la función audit_savepath. • http://osvdb.org/34904 http://secunia.com/advisories/25081 http://sunsolve.sun.com/search/document.do?assetkey=1-26-102900-1 http://www.securityfocus.com/bid/23751 http://www.securitytracker.com/id?1017992 http://www.vupen.com/english/advisories/2007/1611 https://exchange.xforce.ibmcloud.com/vulnerabilities/34003 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1085 •
CVSS: 7.8EPSS: 33%CPEs: 3EXPL: 0CVE-2006-7028
https://notcve.org/view.php?id=CVE-2006-7028
Single CPU Sun systems running Solaris 7, 8, or 9, such as Netra, allows remote attackers to cause a denial of service (console hang) via a flood of small TCP/IP packets. NOTE: this issue has not been replicated by third parties. In addition, the cause is unknown, although it might be related to "jabber" and generation of a large amount of interrupts within the console, or a hardware error. Sistemas de una sola CPU Sun corriendo bajo Solaris 7, 8 o 9, como el Netra, permiten a atacantes remotos provocar una denegación de servicio (cuelgue de consola) mediante una inundación de pequeños paquetes TCP/IP. NOTA: esta vulnerabilidad no ha sido repetida por terceras partes. • http://www.securityfocus.com/archive/1/434449/30/4890/threaded http://www.securityfocus.com/archive/1/434920/30/4890/threaded http://www.securityfocus.com/archive/1/435107/30/4710/threaded http://www.securityfocus.com/archive/1/435146/30/4890/threaded •