NotCVE - vendor:"Sun" product:"Solaris" version:"10"

Page 38 of 376 results (0.005 seconds)

CVSS: 4.6EPSS: 0%CPEs: 122EXPL: 0

CVE-2009-2430

https://notcve.org/view.php?id=CVE-2009-2430

Unspecified vulnerability in auditconfig in Sun Solaris 8, 9, 10, and OpenSolaris snv_01 through snv_58, when Solaris Auditing is enabled, allows local users with an RBAC execution profile for auditconfig to gain privileges via unknown attack vectors. Vulnerabilidad no especificadar en auditconfig en Sun Solaris v8, v9, v10 y OpenSolaris snv_01 hasta snv_58, cuando auditoría de Solaris está activada, permite a los usuarios locales con un perfil de ejecución RBAC para auditconfig obtener privilegios a través de vectores de ataque desconocidos. • http://secunia.com/advisories/35580 http://sunsolve.sun.com/search/document.do?assetkey=1-26-262088-1 http://www.securityfocus.com/bid/35501 •

CVSS: 2.1EPSS: 0%CPEs: 7EXPL: 0

CVE-2009-2314

https://notcve.org/view.php?id=CVE-2009-2314

Race condition in the Sun Lightweight Availability Collection Tool 3.0 on Solaris 7 through 10 allows local users to overwrite arbitrary files via unspecified vectors. Condición de carrera en la Sun Lightweight Availability Collection Tool v3.0 de Solaris 7 hasta 10 , permite a usuarios locales sobrescribir ficheros de su elección a través de vectores no especificados. • http://osvdb.org/55559 http://secunia.com/advisories/35707 http://sunsolve.sun.com/search/document.do?assetkey=1-66-261408-1 http://sunsolve.sun.com/search/document.do?assetkey=1-77-1020599.1-1 http://www.securityfocus.com/bid/35568 http://www.securitytracker.com/id?1022510 http://www.vupen.com/english/advisories/2009/1772 • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •

CVSS: 7.1EPSS: 0%CPEs: 40EXPL: 0

CVE-2009-2297

https://notcve.org/view.php?id=CVE-2009-2297

Unspecified vulnerability in the udp subsystem in the kernel in Sun Solaris 10, and OpenSolaris snv_90 through snv_108, when Solaris Trusted Extensions is enabled, allows remote attackers to cause a denial of service (panic) via unspecified vectors involving the crgetlabel function, related to a "TX panic." NOTE: this issue exists because of a regression in earlier kernel patches. Vulnerabilidad no especificada en el subsistema udp en el kernel en Sun Solaris 10, y OpenSolaris snv_90 hasta snv_108, cuando Solaris Trusted Extensions es habilitado, lo que permite a los atacantes remotos causar una denegación de servicio (panic) a través de vectores no especificado relacionados con la función crgetlabel, relativo a "TX panic." NOTA: este asunto existe por una regresión en parches de kernel anteriores. • http://secunia.com/advisories/35579 http://sunsolve.sun.com/search/document.do?assetkey=1-21-141414-02-1 http://sunsolve.sun.com/search/document.do?assetkey=1-66-262048-1 •

CVSS: 10.0EPSS: 1%CPEs: 228EXPL: 0

CVE-2009-2296

https://notcve.org/view.php?id=CVE-2009-2296

The NFSv4 server kernel module in Sun Solaris 10, and OpenSolaris before snv_119, does not properly implement the nfs_portmon setting, which allows remote attackers to access shares, and read, create, and modify arbitrary files, via unspecified vectors. El módulo NFSv4 server kernel en Sun Solaris 10, y OpenSolaris anteriores a snv_119, no implemente apropiadamente nfs_portmon, lo que permite a los atacantes remotos acceso a archivos compartidos, leído, creados y modificados arbitrariamente, a través de vectores no especificados. • http://osvdb.org/55519 http://secunia.com/advisories/35672 http://secunia.com/advisories/42550 http://sunsolve.sun.com/search/document.do?assetkey=1-21-139991-03-1 http://sunsolve.sun.com/search/document.do?assetkey=1-66-262668-1 http://www.securityfocus.com/bid/35546 http://www.securitytracker.com/id?1022492 http://www.vupen.com/english/advisories/2009/1747 https://exchange.xforce.ibmcloud.com/vulnerabilities/51450 https://support.avaya.com/css/P8/documents/100058487 •

CVSS: 4.3EPSS: 0%CPEs: 23EXPL: 0

CVE-2009-2283

https://notcve.org/view.php?id=CVE-2009-2283

Multiple cross-site scripting (XSS) vulnerabilities in the help jsp scripts in Sun Java Web Console 3.0.2 through 3.0.5, and Sun Java Web Console in Solaris 10, allow remote attackers to inject arbitrary web script or HTML via unspecified vectors. Múltiples vulnerabilidades de ejecución de secuencias de comandos en sitios cruxados (XSS) en help jsp scripts en Sun Java Web Console v3.0.2 a la v3.0.5, y Sun Java Web Console en Solaris 10, permite a atacantes remotos inyectar secuencias de comandos web o HTML de su elección a través de vectores no especificados. • http://secunia.com/advisories/35597 http://sunsolve.sun.com/search/document.do?assetkey=1-21-136987-03-1 http://sunsolve.sun.com/search/document.do?assetkey=1-66-262428-1 http://sunsolve.sun.com/search/document.do?assetkey=1-77-1020659.1-1 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •

1...36 37 38 39 40