CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2005-4133
https://notcve.org/view.php?id=CVE-2005-4133
09 Dec 2005 — Sun Update Connection in Sun Solaris 10, when configured to use a web proxy, allows local users to obtain the proxy authentication password via (1) an unspecified vector and (2) proxy log files. • http://secunia.com/advisories/17931 •
CVSS: 7.8EPSS: 3%CPEs: 2EXPL: 0CVE-2005-3674
https://notcve.org/view.php?id=CVE-2005-3674
18 Nov 2005 — The Internet Key Exchange version 1 (IKEv1) implementation in the libike library in Sun Solaris 9 and 10 allows remote attackers to cause a denial of service (in.iked crash) via certain crafted IKE packets, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1. NOTE: due to the lack of details in the advisory, it is unclear which of CVE-2005-3666, CVE-2005-3667, and/or CVE-2005-3668 this issue applies to. • http://jvn.jp/niscc/NISCC-273756/index.html •
CVSS: 7.5EPSS: 3%CPEs: 3EXPL: 0CVE-2005-3398
https://notcve.org/view.php?id=CVE-2005-3398
01 Nov 2005 — The default configuration of the web server for the Solaris Management Console (SMC) in Solaris 8, 9, and 10 enables the HTTP TRACE method, which could allow remote attackers to obtain sensitive information such as cookies and authentication data from HTTP headers. • http://secunia.com/advisories/17334 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2005-3250
https://notcve.org/view.php?id=CVE-2005-3250
17 Oct 2005 — Unknown vulnerability in Solaris 10 allows local users to cause a denial of service (panic) via unknown vectors related to the "/proc" filesystem, which trigger a null dereference. • http://securitytracker.com/id?1015062 •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2005-3238
https://notcve.org/view.php?id=CVE-2005-3238
14 Oct 2005 — Multiple unspecified vulnerabilities in Solaris 10 SCTP Socket Option Processing allows local users to cause a denial of service (panic) via unspecified attack vectors. • http://secunia.com/advisories/17198 •
CVSS: 7.8EPSS: 0%CPEs: 4EXPL: 0CVE-2005-3099
https://notcve.org/view.php?id=CVE-2005-3099
28 Sep 2005 — Unspecified vulnerability in the (1) Xsun and (2) Xprt commands in Solaris 7, 8, 9, and 10 allows local users to execute arbitrary code. • http://secunia.com/advisories/16955 •
CVSS: 7.1EPSS: 0%CPEs: 2EXPL: 0CVE-2005-3071
https://notcve.org/view.php?id=CVE-2005-3071
27 Sep 2005 — Unspecified vulnerability in Unix File System (UFS) on Solaris 8 and 9, when logging is enabled, allows local users to cause a denial of service ("soft hang") via certain write operations to UFS. • http://secunia.com/advisories/16924 •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2005-3001
https://notcve.org/view.php?id=CVE-2005-3001
20 Sep 2005 — Unspecified vulnerability in the "tl" driver in Solaris 10 allows local users to cause a denial of service (panic) via unknown vectors. • http://secunia.com/advisories/16874 •
CVSS: 8.8EPSS: 4%CPEs: 1EXPL: 0CVE-2005-2870
https://notcve.org/view.php?id=CVE-2005-2870
08 Sep 2005 — Unknown vulnerability in the net-svc script on Solaris 10 allows remote authenticated users to execute arbitrary code on a DHCP client via certain DHCP responses. • http://sunsolve.sun.com/search/document.do?assetkey=1-26-101897-1 •
CVSS: 7.8EPSS: 0%CPEs: 5EXPL: 5CVE-2005-2072 – Solaris 9/10 - 'ld.so' Local Privilege Escalation
https://notcve.org/view.php?id=CVE-2005-2072
29 Jun 2005 — The runtime linker (ld.so) in Solaris 8, 9, and 10 trusts the LD_AUDIT environment variable in setuid or setgid programs, which allows local users to gain privileges by (1) modifying LD_AUDIT to reference malicious code and possibly (2) using a long value for LD_AUDIT. • https://www.exploit-db.com/exploits/1073 • CWE-264: Permissions, Privileges, and Access Controls •