CVSS: 10.0EPSS: 19%CPEs: 6EXPL: 0CVE-2007-3093
https://notcve.org/view.php?id=CVE-2007-3093
Unspecified vulnerability in the logging mechanism in Solaris Management Console (SMC) on Sun Solaris 8 through 10 before 20070605 allows remote attackers to execute arbitrary code via unspecified vectors, related to the WBEM server. Vulnerabilidad no especificada en el mecanismo de acceso de usuario en Solaris Management Console (SMC) en Sun Solaris 8 hasta 10 versiones anteriores a 20070605 permite a atacantes remotos ejecutar código de su elección mediante vectores no especificados, referidos al servidor WBEM. • http://osvdb.org/36590 http://secunia.com/advisories/25566 http://sunsolve.sun.com/search/document.do?assetkey=1-26-102903-1 http://www.securityfocus.com/bid/24327 http://www.securitytracker.com/id?1018206 http://www.vupen.com/english/advisories/2007/2077 https://exchange.xforce.ibmcloud.com/vulnerabilities/34734 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1680 •
CVSS: 9.0EPSS: 2%CPEs: 6EXPL: 0CVE-2007-3094
https://notcve.org/view.php?id=CVE-2007-3094
Unspecified vulnerability in the authentication mechanism in Solaris Management Console (SMC) on Sun Solaris 8 through 10 before 20070605 allows remote authenticated users to execute arbitrary code via unspecified vectors, related to the WBEM server. Vulnerabilidad no especificada en en el mecanismo de autenticación de Solaris Management Console (SMC) en Sun Solaris 8 hasta 10 anterior al 05/06/2007 permite a usuarios autenticados remotamente ejecutar código de su elección a través de vectores no especificados, relacionados con el servidor WBEM. • http://osvdb.org/36591 http://sunsolve.sun.com/search/document.do?assetkey=1-26-102902-1 http://www.securityfocus.com/bid/24326 http://www.securitytracker.com/id?1018205 http://www.vupen.com/english/advisories/2007/2076 https://exchange.xforce.ibmcloud.com/vulnerabilities/34735 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1341 •
CVSS: 5.0EPSS: 6%CPEs: 6EXPL: 1CVE-2007-2882
https://notcve.org/view.php?id=CVE-2007-2882
Unspecified vulnerability in the NFS client module in Sun Solaris 8 through 10 before 20070524, when operating as an NFS server, allows remote attackers to cause a denial of service (crash) via certain Access Control List (acl) packets. Vulnerabilidad no especificada en el módulo cliente NFS de Sun Solaris 8 hasta 10 anterior al 24/05/2007, cuando opera como un servidor NFS, permite a atacantes remotos provocar una denegación de servicio (caída) mediante determinados paquetes de Lista de Control de Acceso (Access Control List o acl). • http://osvdb.org/34908 http://secunia.com/advisories/25403 http://secunia.com/advisories/25879 http://sunsolve.sun.com/search/document.do?assetkey=1-26-102911-1 http://support.avaya.com/elmodocs2/security/ASA-2007-245.htm http://www.securityfocus.com/bid/24145 http://www.securitytracker.com/id?1018129 http://www.vupen.com/english/advisories/2007/1943 https://exchange.xforce.ibmcloud.com/vulnerabilities/34504 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre. •
CVSS: 10.0EPSS: 1%CPEs: 4EXPL: 0CVE-2007-1794
https://notcve.org/view.php?id=CVE-2007-1794
The Javascript engine in Mozilla 1.7 and earlier on Sun Solaris 8, 9, and 10 might allow remote attackers to execute arbitrary code via vectors involving garbage collection that causes deletion of a temporary object that is still being used. NOTE: this issue might be related to CVE-2006-3805. El motor de Javascript en Mozilla 1.7 y anteriores en Sun Solaris 8, 9, y 10 podría permitir a atacantes remotos ejecutar código de su elección a través de vectores que afectan al colector de basura que provoca el borrado de un objeto temporal que todavía se está utilizando. NOTA: este asunto podría estar relacionado con CVE-2006-3805. • http://secunia.com/advisories/24624 http://sunsolve.sun.com/search/document.do?assetkey=1-26-102865-1 http://www.vupen.com/english/advisories/2007/1178 •
CVSS: 7.8EPSS: 33%CPEs: 3EXPL: 0CVE-2006-7028
https://notcve.org/view.php?id=CVE-2006-7028
Single CPU Sun systems running Solaris 7, 8, or 9, such as Netra, allows remote attackers to cause a denial of service (console hang) via a flood of small TCP/IP packets. NOTE: this issue has not been replicated by third parties. In addition, the cause is unknown, although it might be related to "jabber" and generation of a large amount of interrupts within the console, or a hardware error. Sistemas de una sola CPU Sun corriendo bajo Solaris 7, 8 o 9, como el Netra, permiten a atacantes remotos provocar una denegación de servicio (cuelgue de consola) mediante una inundación de pequeños paquetes TCP/IP. NOTA: esta vulnerabilidad no ha sido repetida por terceras partes. • http://www.securityfocus.com/archive/1/434449/30/4890/threaded http://www.securityfocus.com/archive/1/434920/30/4890/threaded http://www.securityfocus.com/archive/1/435107/30/4710/threaded http://www.securityfocus.com/archive/1/435146/30/4890/threaded •