Page 25 of 209 results (0.012 seconds)

CVSS: 5.0EPSS: 1%CPEs: 5EXPL: 0

The Solaris Management Console (SMC) in Sun Solaris 8 and 9 generates different 404 error messages when a file does not exist versus when a file exists but is otherwise inaccessible, which could allow remote attackers to obtain sensitive information in conjunction with a directory traversal (..) attack. • http://secunia.com/advisories/11616 http://spoofed.org/files/text/solaris-smc-advisory.txt http://sunsolve.sun.com/search/document.do?assetkey=1-26-57559-1&searchclause=%22category:security%22%20%20111313-02 http://www.auscert.org.au/render.html?it=4105 http://www.derkeiler.com/Mailing-Lists/securityfocus/focus-sun/2003-10/0032.html http://www.osvdb.org/displayvuln.php?osvdb_id=6119 http://www.securityfocus.com/bid/10349 http://www.securityfocus.com/bid/8873 https://exchange& • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •

CVSS: 2.1EPSS: 0%CPEs: 4EXPL: 0

Unknown vulnerability in the sendfilev function in Sun Solaris 8 and 9 allows local users to cause a denial of service (system panic) via unknown vectors. • http://secunia.com/advisories/11457 http://sunsolve.sun.com/search/document.do?assetkey=1-26-57470-1&searchclause=%22category:security%22%20%20108528-27 http://www.auscert.org.au/render.html?it=4056 http://www.osvdb.org/displayvuln.php?osvdb_id=5619 http://www.securityfocus.com/bid/10202 https://exchange.xforce.ibmcloud.com/vulnerabilities/15946 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1684 •

CVSS: 7.2EPSS: 0%CPEs: 4EXPL: 1

Unknown vulnerability in passwd(1) in Solaris 8.0 and 9.0 allows local users to gain privileges via unknown attack vectors. • https://www.exploit-db.com/exploits/715 http://marc.info/?l=bugtraq&m=107852274423414&w=2 http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert/57454 http://www.ciac.org/ciac/bulletins/o-088.shtml http://www.kb.cert.org/vuls/id/694782 http://www.securityfocus.com/bid/9757 https://exchange.xforce.ibmcloud.com/vulnerabilities/15327 •

CVSS: 4.6EPSS: 0%CPEs: 8EXPL: 0

Multiple buffer overflows in uucp for Sun Solaris 2.6, 7, 8, and 9 allow local users to execute arbitrary code as the uucp user. • http://sunsolve.sun.com/search/document.do?assetkey=1-26-57508-1 http://www.auscert.org.au/render.html?it=3935 http://www.securityfocus.com/bid/9837 https://exchange.xforce.ibmcloud.com/vulnerabilities/15425 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1127 •

CVSS: 2.1EPSS: 0%CPEs: 6EXPL: 0

Unknown vulnerability in conv_fix in Sun Solaris 7 through 9, when invoked by conv_lpd, allows local users to overwrite arbitrary files. • http://secunia.com/advisories/10991 http://sunsolve.sun.com/search/document.do?assetkey=1-26-57509-1 http://www.auscert.org.au/render.html?it=3902 http://www.ciac.org/ciac/bulletins/o-089.shtml http://www.kb.cert.org/vuls/id/412566 http://www.osvdb.org/displayvuln.php?osvdb_id=4071 http://www.securityfocus.com/bid/9759 https://exchange.xforce.ibmcloud.com/vulnerabilities/15331 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1732 •