CVSS: 7.8EPSS: 5%CPEs: 13EXPL: 0CVE-2007-6482
https://notcve.org/view.php?id=CVE-2007-6482
Unspecified vulnerability in the Device Manager daemon (utdevmgrd) in Sun Ray Server Software 2.0, 3.0, 3.1, and 3.1.1 allows remote attackers to cause a denial of service (daemon crash) via unspecified vectors. Vulnerabilidad no especificada en el demonio Device Manager (utdevmgrd) en Sun Ray Server Software 2.0, 3.0, 3.1, y 3.1.1 permite a atacantes remotos provocar denegación de servicio (caida de demonio) a través de vectores no especificados. • http://osvdb.org/40846 http://secunia.com/advisories/28148 http://sunsolve.sun.com/search/document.do?assetkey=1-26-103175-1 http://sunsolve.sun.com/search/document.do?assetkey=1-66-201227-1 http://www.securityfocus.com/bid/26944 http://www.securitytracker.com/id?1019118 http://www.vupen.com/english/advisories/2007/4269 https://exchange.xforce.ibmcloud.com/vulnerabilities/39133 •
CVSS: 9.3EPSS: 1%CPEs: 2EXPL: 0CVE-2007-6413
https://notcve.org/view.php?id=CVE-2007-6413
Sun Solaris 10 with the 120011-04 and 120012-04 patches, and later 120011-* and 120012-* patches, allows remote attackers to bypass certain netgroup restrictions and obtain root access to a filesystem via NFS requests from a client root user. Sun Solaris 10 con los parches 120011-04 y 120012-04, y posteriores parches 120011-* y 120012-*, permite a atacantes remotos evitar ciertas restricciones de ciertros grupos de red y obtener acceso de root a sistemas de archivo a través de una respuesta NFS desde un usuario cliente root. • http://osvdb.org/40829 http://secunia.com/advisories/28096 http://sunsolve.sun.com/search/document.do?assetkey=1-26-103162-1 http://sunsolve.sun.com/search/document.do?assetkey=1-66-201317-1 http://www.securityfocus.com/bid/26872 http://www.securitytracker.com/id?1019102 http://www.vupen.com/english/advisories/2007/4218 https://exchange.xforce.ibmcloud.com/vulnerabilities/39033 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 4.9EPSS: 0%CPEs: 1EXPL: 0CVE-2007-6225
https://notcve.org/view.php?id=CVE-2007-6225
Unspecified vulnerability in Sun Solaris 10, when 64bit mode is used on the x86 platform, allows local users in a Linux (lx) branded zone to cause a denial of service (panic) via unspecified vectors. Vulnerabilidad no especificada en Sun Solaris 10, cuando se encuentra en modo 64bit es utilizado sobre la plataforma x86, permite a usuarios locales en una zona marcada como Linux (lx) provocar denegación de servicio (panic) a través de vectores no especificados. • http://osvdb.org/40828 http://secunia.com/advisories/27877 http://sunsolve.sun.com/search/document.do?assetkey=1-26-103153-1 http://www.securityfocus.com/bid/26672 http://www.securitytracker.com/id?1019034 http://www.vupen.com/english/advisories/2007/4058 https://exchange.xforce.ibmcloud.com/vulnerabilities/38799 •
CVSS: 4.3EPSS: 0%CPEs: 9EXPL: 2CVE-2007-6232 – ftp Admin 0.1.0 - Local File Inclusion / Cross-Site Scripting / Authentication Bypass
https://notcve.org/view.php?id=CVE-2007-6232
Cross-site scripting (XSS) vulnerability in index.php in FTP Admin 0.1.0 allows remote attackers to inject arbitrary web script or HTML via the error parameter in an error page action. Vulnerabilidad de secuencia de comandos en sitios cruzados (XSS) en index.php en FTP Admin 0.1.0 permite a atacantes remotos inyectar secuencias de comandos web o HTML a través del parámetro error en una acción de página de error. • https://www.exploit-db.com/exploits/4681 https://www.exploit-db.com/exploits/4684 http://secunia.com/advisories/27875 https://exchange.xforce.ibmcloud.com/vulnerabilities/38780 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 4.7EPSS: 0%CPEs: 2EXPL: 0CVE-2007-6216
https://notcve.org/view.php?id=CVE-2007-6216
Race condition in the Fibre Channel protocol (fcp) driver and Devices filesystem (devfs) in Sun Solaris 10 allows local users to cause a denial of service (system hang) via some programs that access hardware resources, as demonstrated by the (1) cfgadm and (2) format programs. Condición de carrera en el controlador de protocolo Fibre Channel protocol (fcp) y sistema de archivos Devices (devfs) en Sun Solaris 10 permite a usuarios locales provocar denegación de servicio (cuelgue del sistema) a través de algunos programas quye acceden a los recursos hardware, como se demostró por los programas (1) cfgadm y (2) format. • http://osvdb.org/40826 http://osvdb.org/40827 http://secunia.com/advisories/27867 http://sunsolve.sun.com/search/document.do?assetkey=1-26-102947-1 http://sunsolve.sun.com/search/document.do?assetkey=1-66-200182-1 http://www.securityfocus.com/bid/26653 http://www.securitytracker.com/id?1019025 http://www.vupen.com/english/advisories/2007/4043 https://exchange.xforce.ibmcloud.com/vulnerabilities/38767 • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •