NotCVE - vendor:"Sun" product:"Solaris" version:" <= 10"

Page 23 of 619 results (0.015 seconds)

CVSS: 5.5EPSS: 0%CPEs: 205EXPL: 0

CVE-2009-0069

https://notcve.org/view.php?id=CVE-2009-0069

07 Jan 2009 — Unspecified vulnerability in the nfs4rename_persistent_fh function in the NFS 4 (aka NFSv4) client in the kernel in Sun Solaris 10 and OpenSolaris before snv_102 allows local users to cause a denial of service (recursive mutex_enter and panic) via unspecified vectors. Vulnerabilidad no especificada en la función nfs4rename_persistent_fh en el cliente NFS 4 (también conocido como NFSv4) en el kernel en Sun Solaris 10 y OpenSolaris antes de snv_102 permite a usuarios locales provocar una denegación de servici... • http://mail.opensolaris.org/pipermail/onnv-notify/2008-October/015342.html • CWE-399: Resource Management Errors •

CVSS: 7.8EPSS: 0%CPEs: 6EXPL: 0

CVE-2008-5746

https://notcve.org/view.php?id=CVE-2008-5746

29 Dec 2008 — Sun SNMP Management Agent (SUNWmasf) 1.4u2 through 1.5.4 allows local users to overwrite arbitrary files and gain privileges via a symlink attack on temporary files. Sun SNMP Management Agent (SUNWmasf) v1.4u2 a la v1.5.4, permite a usuarios locales sobrescribir ficheros de su elección y obtener privilegios a través de un ataque de enlace simbólico sobre ficheros temporales. • http://osvdb.org/50987 • CWE-59: Improper Link Resolution Before File Access ('Link Following') •

CVSS: 7.8EPSS: 0%CPEs: 112EXPL: 0

CVE-2008-5699

https://notcve.org/view.php?id=CVE-2008-5699

22 Dec 2008 — The name service cache daemon (nscd) in Sun Solaris 10 and OpenSolaris snv_50 through snv_104 does not properly check permissions, which allows local users to gain privileges and obtain sensitive information via unspecified vectors. El Demonio de Caché del Servicio de Nombres (ncsd) en Sun Solaris 10 y OpenSolaris snv_50 hasta snv_104 no comprueba adecuadamente los permisos, esto permite a usuarios locales obtener privilegios e información sensible a través de vectores no especificados. • http://osvdb.org/50934 • CWE-264: Permissions, Privileges, and Access Controls •

CVSS: 7.2EPSS: 0%CPEs: 160EXPL: 2

CVE-2008-5689 – Linux Kernel (Solaris 10 / < 5.10 138888-01) - Local Privilege Escalation

https://notcve.org/view.php?id=CVE-2008-5689

19 Dec 2008 — tun in IP Tunnel in Solaris 10 and OpenSolaris snv_01 through snv_76 allows local users to cause a denial of service (panic) and possibly execute arbitrary code via a crafted SIOCGTUNPARAM IOCTL request, which triggers a NULL pointer dereference. Tun en IP Tunnel en Solaris 10 y OpenSolaris snv_01 a snv_76 permite a usuarios locales causar una denegación de servicio (causando un panic del sistema) y, posiblemente, ejecutar código arbitrario a través de una solicitud SIOCGTUNPARAM IOCTL modificada, que ocasi... • https://www.exploit-db.com/exploits/15962 • CWE-399: Resource Management Errors •

CVSS: 7.5EPSS: 1%CPEs: 91EXPL: 0

CVE-2008-5684

https://notcve.org/view.php?id=CVE-2008-5684

19 Dec 2008 — Unspecified vulnerability in the X Inter Client Exchange library (aka libICE) in Sun Solaris 8 through 10 and OpenSolaris before snv_85 allows context-dependent attackers to cause a denial of service (application crash), as demonstrated by a port scan that triggers a segmentation violation in the Gnome session manager (aka gnome-session). Una vulnerabilidad sin especificar en el X Inter Client Exchange library (tambien llamado libICE) en Sun Solaris 8 a 10 y en versiones de OpenSolaris anteriores a la snv_8... • http://secunia.com/advisories/33157 • CWE-399: Resource Management Errors •

CVSS: 7.1EPSS: 0%CPEs: 210EXPL: 0

CVE-2008-5690

https://notcve.org/view.php?id=CVE-2008-5690

19 Dec 2008 — The Kerberos credential renewal feature in Sun Solaris 8, 9, and 10, and OpenSolaris build snv_01 through snv_104, allows local users to cause a denial of service (authentication failure) via unspecified vectors related to incorrect cache file permissions, and lack of credential storage by the store_cred function in pam_krb5. La funcionalidad de renovación de credenciales de Kerberos en Sun Solaris versiones 8, 9 y 10, y OpenSolaris build snv_01 hasta snv_104, permite a usuarios locales causar una denegació... • http://secunia.com/advisories/33042 • CWE-255: Credentials Management Errors •

CVSS: 7.5EPSS: 1%CPEs: 74EXPL: 0

CVE-2008-5661

https://notcve.org/view.php?id=CVE-2008-5661

17 Dec 2008 — The IPv4 Forwarding feature in Sun Solaris 10 and OpenSolaris snv_47 through snv_82, with certain patches installed, allows remote attackers to cause a denial of service (panic) via unknown vectors that trigger a NULL pointer dereference. La característica IPv4 Forwarding en Sun Solaris v10 y OpenSolaris desde snv_47 hasta snv_82, con ciertos parches instalados, permite a atacantes remotos producir una denegacion de servicio (pánico) a través de vectores desconocidos que disparan una referencia a puntero nu... • http://secunia.com/advisories/33148 • CWE-399: Resource Management Errors •

CVSS: 6.1EPSS: 0%CPEs: 7EXPL: 0

CVE-2008-5550

https://notcve.org/view.php?id=CVE-2008-5550

12 Dec 2008 — Open redirect vulnerability in console/faces/jsp/login/BeginLogin.jsp in Sun Java Web Console 3.0.2 through 3.0.5 and Solaris 10 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via the redirect_url parameter. Vulnerabilidad involuntaria de redirección en console/faces/jsp/login/BeginLogin.jsp en Sun Java Web Console v3.0.2 a v3.0.5 y Solaris 10 permite a atacantes remotos redirigir a los usuarios a sitios web de su elección y realizar ataques de phising a través... • http://sunsolve.sun.com/search/document.do?assetkey=1-21-125950-18-1 •

CVSS: 7.1EPSS: 0%CPEs: 30EXPL: 0

CVE-2008-5423

https://notcve.org/view.php?id=CVE-2008-5423

11 Dec 2008 — Sun Sun Ray Server Software 3.x and 4.0 and Sun Ray Windows Connector 1.1 and 2.0 expose the LDAP password during a configuration step, which allows local users to discover the Sun Ray administration password, and obtain admin access to the Data Store and Administration GUI, via unspecified vectors related to the utconfig component of the Server Software and the uttscadm component of the Windows Connector. Sun Ray Server Software v3.x y v4.0 y Sun Ray Windows Connector v1.1 y v2.0 exponen la contraseña LDAP... • http://secunia.com/advisories/33108 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •

CVSS: 7.5EPSS: 1%CPEs: 18EXPL: 0

CVE-2008-5422

https://notcve.org/view.php?id=CVE-2008-5422

11 Dec 2008 — Sun Sun Ray Server Software 3.1 through 4.0 does not properly restrict access, which allows remote attackers to discover the Sun Ray administration password, and obtain admin access to the Data Store and Administration GUI, via unspecified vectors. Sun Sun Ray Server Software v3.1 a v4.0 no restringe el acceso apropiadamente, lo que permite a atacantes remotos descubrir la contraseña de administración de Sun Ray y obtener acceso admin a el Data Store y la Administration GUI, mediante vectores no especificad... • http://secunia.com/advisories/33108 • CWE-264: Permissions, Privileges, and Access Controls •

1...21 22 23 24 25