CVSS: 8.1EPSS: 0%CPEs: 265EXPL: 0CVE-2008-3838
https://notcve.org/view.php?id=CVE-2008-3838
27 Aug 2008 — Unspecified vulnerability in the NFS Remote Procedure Calls (RPC) zones implementation in Sun Solaris 10 and OpenSolaris before snv_88 allows local administrators of non-global zones to read and modify NFS traffic for arbitrary non-global zones, possibly leading to file modifications or a denial of service. Vulnerabilidad no especificada en el NFS Remote Procedure Calls (RPC) implementación de zonas de Sun Solaris 10 y OpenSolaris anterior a snv_88, permite a administradores locales de zonas no-globales lee... • http://secunia.com/advisories/31622 • CWE-20: Improper Input Validation •
CVSS: 7.1EPSS: 0%CPEs: 288EXPL: 0CVE-2008-3666
https://notcve.org/view.php?id=CVE-2008-3666
13 Aug 2008 — Unspecified vulnerability in Sun Solaris 10 and OpenSolaris before snv_96 allows (1) context-dependent attackers to cause a denial of service (panic) via vectors involving creation of a crafted file and use of the sendfilev system call, as demonstrated by a file served by an Apache 2.2.x web server with EnableSendFile configured; and (2) local users to cause a denial of service (panic) via a call to the sendfile system call, as reachable through the sendfilev library. La vulnerabilidad no especificada en Su... • http://osvdb.org/47375 •
CVSS: 9.8EPSS: 13%CPEs: 23EXPL: 0CVE-2008-0965
https://notcve.org/view.php?id=CVE-2008-0965
08 Aug 2008 — Multiple format string vulnerabilities in snoop on Sun Solaris 8 through 10 and OpenSolaris before snv_96, when the -o option is omitted, allow remote attackers to execute arbitrary code via format string specifiers in an SMB packet. Múltiples vulnerabilidades de cadena de formato en snoop sobre Sun Solaris versión 8 hasta 10 y OpenSolaris anterior a la versión snv_96, cuando se omite la opción -o, permiten a los atacantes remotos ejecutar código arbitrario por medio de especificadores de cadena de formato ... • http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=735 • CWE-134: Use of Externally-Controlled Format String •
CVSS: 9.8EPSS: 21%CPEs: 23EXPL: 1CVE-2008-0964 – Sun Solaris 10 - snoop(1M) Utility Remote Command Execution
https://notcve.org/view.php?id=CVE-2008-0964
08 Aug 2008 — Multiple stack-based buffer overflows in snoop on Sun Solaris 8 through 10 and OpenSolaris before snv_96, when the -o option is omitted, allow remote attackers to execute arbitrary code via a crafted SMB packet. Múltiples desbordamientos de búfer en la región stack de la memoria en Snoop en Sun Solaris versión 8 hasta 10 y OpenSolaris anterior a la versión snv_96, cuando se omite la opción -o, permiten a los atacantes remotos ejecutar código arbitrario por medio de un paquete SMB creado. • https://www.exploit-db.com/exploits/6328 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 5.5EPSS: 0%CPEs: 24EXPL: 0CVE-2008-3549
https://notcve.org/view.php?id=CVE-2008-3549
07 Aug 2008 — Unspecified vulnerability in the pthread_mutex_reltimedlock_np API in Sun Solaris 10 and OpenSolaris before snv_90 allows local users to cause a denial of service (system hang or panic) via unknown vectors. Vulnerabilidad no especificada en la API pthread_mutex_reltimedlock_np de Sun Solaris 10 y OpenSolaris versiones anteriores a la snv_90, permite a usuarios locales provocar una denegación de servicio (cuelgue del sistema o panic) a través de vectores desconocidos. • http://secunia.com/advisories/31348 • CWE-399: Resource Management Errors •
CVSS: 5.5EPSS: 0%CPEs: 12EXPL: 0CVE-2008-3426
https://notcve.org/view.php?id=CVE-2008-3426
31 Jul 2008 — Unspecified vulnerability in the Solaris Platform Information and Control Library daemon (picld) in Sun Solaris 8 through 10, and OpenSolaris builds snv_01 through snv_95, allows local users to cause a denial of service via unknown vectors that prevent operation of utilities such as prtdiag, prtpicl, and prtfru. Vulnerabilidad no especificada del demonio Solaris Platform Information and Control Library daemon (picld) en Sun Solaris versión 8 hasta la 10, y OpenSolaris builds versión snv_01 hasta la snv_95, ... • http://secunia.com/advisories/31303 •
CVSS: 7.8EPSS: 3%CPEs: 6EXPL: 0CVE-2008-2946
https://notcve.org/view.php?id=CVE-2008-2946
30 Jun 2008 — The SNMP-DMI mapper subagent daemon (aka snmpXdmid) in Solstice Enterprise Agents in Sun Solaris 8 through 10 allows remote attackers to cause a denial of service (daemon crash) via malformed packets. Subagente mapeador SNMP-DNI (aka snmpXdmid) en Solstice Enterprise Agents en Sun Solaris 8 hasta 10 permite a atacantes remotos causar la denegación e servicios (caída del demonio) a través de paquetes malformados • http://secunia.com/advisories/30863 • CWE-399: Resource Management Errors •
CVSS: 7.8EPSS: 0%CPEs: 3EXPL: 1CVE-2008-2710
https://notcve.org/view.php?id=CVE-2008-2710
16 Jun 2008 — Integer signedness error in the ip_set_srcfilter function in the IP Multicast Filter in uts/common/inet/ip/ip_multi.c in the kernel in Sun Solaris 10 and OpenSolaris before snv_92 allows local users to execute arbitrary code in other Solaris Zones via an SIOCSIPMSFILTER IOCTL request with a large value of the imsf->imsf_numsrc field, which triggers an out-of-bounds write of kernel memory. NOTE: this was reported as an integer overflow, but the root cause involves the bypass of a signed comparison. Error de ... • http://secunia.com/advisories/30693 • CWE-189: Numeric Errors •
CVSS: 5.5EPSS: 0%CPEs: 2EXPL: 0CVE-2008-2706
https://notcve.org/view.php?id=CVE-2008-2706
16 Jun 2008 — Unspecified vulnerability in the event port implementation in Sun Solaris 10 allows local users to cause a denial of service (panic) by submitting and retrieving user-defined events, probably related to a NULL dereference. Vulnerabilidad no especificada en la implementación del puerto del evento en Sun Solaris 10 permite a usuarios locales provocar una denegación de servicio (panic) enviando y recuperando eventos definidos por el usuario, probablemente relacionados con una referencia nula. • http://secunia.com/advisories/30653 • CWE-399: Resource Management Errors •
CVSS: 7.8EPSS: 3%CPEs: 6EXPL: 0CVE-2008-2707
https://notcve.org/view.php?id=CVE-2008-2707
16 Jun 2008 — Unspecified vulnerability in the e1000g driver in Sun Solaris 10 and OpenSolaris before snv_93 allows remote attackers to cause a denial of service (network connectivity loss) via unknown vectors. Vulnerabilidad no especificada en el controlador e1000g de Sun Solaris 10 y OpenSolaris anterior a snv_93, permite a atacantes remotos provocar una denegación de servicio (pérdida de conectividad de la red) mediante vectores desconocidos. • http://secunia.com/advisories/30700 • CWE-264: Permissions, Privileges, and Access Controls •