CVSS: 3.2EPSS: 0%CPEs: 3EXPL: 1CVE-2010-2382 – Oracle Solaris 8/9/10 - 'flar' Insecure Temporary File Creation
https://notcve.org/view.php?id=CVE-2010-2382
13 Jul 2010 — Unspecified vulnerability in Oracle Solaris 8, 9, and 10 allows local users to affect confidentiality and integrity via unknown vectors. Vulnerabilidad no especificada en Oracle Solaris v8, v9 y v10 permite a usuarios locales afectar la confidencialidad e integridad a través de vectores desconocidos. • https://www.exploit-db.com/exploits/34311 •
CVSS: 3.2EPSS: 0%CPEs: 2EXPL: 1CVE-2010-2384 – Oracle Solaris Management Console - WBEM Insecure Temporary File Creation
https://notcve.org/view.php?id=CVE-2010-2384
13 Jul 2010 — Unspecified vulnerability in Oracle Solaris 9 and 10 allows local users to affect confidentiality and integrity via unknown vectors related to Solaris Management Console. Vulnerabilida dno especificada en Oracle Solaris v9 y v10 permite a usuarios locales afectar la confidencialidad e integridad a través de vectores desconocidos rlacionados con Solaris Management Console. • https://www.exploit-db.com/exploits/34314 •
CVSS: 3.2EPSS: 0%CPEs: 3EXPL: 0CVE-2010-2376
https://notcve.org/view.php?id=CVE-2010-2376
13 Jul 2010 — Unspecified vulnerability in Oracle Solaris 8, 9, and 10 allows local users to affect confidentiality and integrity via unknown vectors related to Solaris Management Console. Vulnerabilidad no especificada en Oracle Solaris v8, v9, y v10 permite a usuarios locales afectar la confidencialidad e integridad a través de vectores no conocidos relacionado con Solaris Management Console. • http://www.oracle.com/technetwork/topics/security/cpuoct2010-175626.html •
CVSS: 6.3EPSS: 0%CPEs: 3EXPL: 0CVE-2010-2400
https://notcve.org/view.php?id=CVE-2010-2400
13 Jul 2010 — Unspecified vulnerability in Oracle Solaris 9 and 10, and OpenSolaris, allows local users to affect availability via unknown vectors related to Kernel/Filesystem. Vulnerabilidad sin especificar en Oracle Solaris v9 y v10 y OpenSolaris, permite a usuarios locales afectar la disponibilidad a través de vectores desconocidos relacionado con Kernel/Filesystem. • http://www.oracle.com/technetwork/topics/security/cpuoct2010-175626.html •
CVSS: 5.5EPSS: 0%CPEs: 4EXPL: 0CVE-2010-2386
https://notcve.org/view.php?id=CVE-2010-2386
13 Jul 2010 — Unspecified vulnerability in Oracle Solaris 8, 9, and 10, and OpenSolaris, allows local users to affect availability via unknown vectors related to GigaSwift Ethernet Driver. Vulnerabilidad sin especificar en Oracle Solaris 8, 9 y 10 y OpenSolaris, permite a usuarios locales comprometer la disponibilidad a través de vectores desconocidos relacionados con GigaSwift Ethernet Driver. • http://www.oracle.com/technetwork/topics/security/cpuoct2010-175626.html •
CVSS: 7.1EPSS: 0%CPEs: 4EXPL: 1CVE-2010-2383 – Oracle Solaris - 'nfslogd' Insecure Temporary File Creation
https://notcve.org/view.php?id=CVE-2010-2383
13 Jul 2010 — Unspecified vulnerability in Oracle Solaris 8, 9, and 10, and OpenSolaris, allows local users to affect confidentiality and integrity, related to NFS. Vulnerabilidad no especificada en Oracle Solaris v8, v9 y v10, y OpenSolaris, permite a usuarios locales afectar a la confidencialidad e integridad, relacionado con NFS. • https://www.exploit-db.com/exploits/34313 •
CVSS: 5.5EPSS: 0%CPEs: 10EXPL: 0CVE-2003-1575
https://notcve.org/view.php?id=CVE-2003-1575
28 Jan 2010 — VERITAS File System (VxFS) 3.3.3, 3.4, and 3.5 before MP1 Rolling Patch 02 for Sun Solaris 2.5.1 through 9 does not properly implement inheritance of default ACLs in certain circumstances related to the characteristics of a directory inode, which allows local users to bypass intended file permissions by accessing a file on a VxFS filesystem. VERITAS File System (VxFS) v3.3.3, v3.4, y v3.5 anterior a MP1 Rolling Patch 02 para Sun Solaris v2.5.1 a la v9, no implementa adecuadamente la herencia de las ACLs por... • http://sunsolve.sun.com/search/document.do?assetkey=1-21-113207-05-1 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 10.0EPSS: 5%CPEs: 4EXPL: 0CVE-2003-1576
https://notcve.org/view.php?id=CVE-2003-1576
28 Jan 2010 — Buffer overflow in pamverifier in Change Manager (CM) 1.0 for Sun Management Center (SunMC) 3.0 on Solaris 8 and 9 on the sparc platform allows remote attackers to execute arbitrary code via unspecified vectors. Desbordamiento de búfer en pamverifier en Change Manager (CM) v1.0 para Sun Management Center (SunMC) v3.0 en Solaris v8 y v9 en la plataforma sparc permite a atacantes remotos ejecutar código arbitrario a través de vectores inespecíficos. • http://sunsolve.sun.com/search/document.do?assetkey=1-21-113105-01-1 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.1EPSS: 0%CPEs: 10EXPL: 0CVE-2004-2766
https://notcve.org/view.php?id=CVE-2004-2766
28 Jan 2010 — Webmail in Sun ONE Messaging Server 6.1 and iPlanet Messaging Server 5.2 before 5.2hf2.02 allows remote attackers to obtain unspecified "access" to e-mail via a crafted e-mail message, related to a "session hijacking" issue, a different vulnerability than CVE-2005-2022 and CVE-2006-5486. Webmail en Sun ONE Messaging Server v6.1 y iPlanet Messaging Server v5.2 anteriores a v5.2hf2.02 permite a atacantes remotos obtener "acceso" inespecífico al correo electrónico a través de un mensaje de correo electrónico m... • http://sunsolve.sun.com/search/document.do?assetkey=1-21-116568-55-1 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 6.1EPSS: 0%CPEs: 10EXPL: 0CVE-2004-2765
https://notcve.org/view.php?id=CVE-2004-2765
28 Jan 2010 — Cross-site scripting (XSS) vulnerability in Webmail in Sun ONE Messaging Server 6.1 and iPlanet Messaging Server 5.2 before 5.2hf2.02, when Internet Explorer is used, allows remote attackers to inject arbitrary web script or HTML via a crafted e-mail message, a different vulnerability than CVE-2005-2022 and CVE-2006-5486. Vulnerabilidad de ejecución de secuencias de comandos en sitios cruzados (XSS) en Webmail en Sun ONE Messaging Server v6.1 e iPlanet Messaging Server v5.2 anterior a 5.2hf2.02, cuando se u... • http://sunsolve.sun.com/search/document.do?assetkey=1-21-116568-56-1 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •