CVSS: 3.6EPSS: 0%CPEs: 2EXPL: 0CVE-2011-0801
https://notcve.org/view.php?id=CVE-2011-0801
Unspecified vulnerability in Oracle Solaris 10 and 11 Express allows local users to affect confidentiality and integrity via unknown vectors related to cp. Vulnerabilidad no especificada en Oracle Solaris v10 y Express v11 permite a usuarios locales afectar a la confidencialidad y la integridad a través de vectores desconocidos relacionados con cp. • http://www.oracle.com/technetwork/topics/security/cpuapr2011-301950.html •
CVSS: 2.1EPSS: 0%CPEs: 3EXPL: 0CVE-2011-0412
https://notcve.org/view.php?id=CVE-2011-0412
Oracle Solaris 8, 9, and 10 stores back-out patch files (undo.Z) unencrypted with world-readable permissions under /var/sadm/pkg/, which allows local users to obtain password hashes and conduct brute force password guessing attacks. Oracle Solaris 10 almacena archivos de "vuelta atrás" de parches (undo.Z) sin encriptar con permiso de lectura para todos los usuarios en /var/sadm/pkg/, lo que permite a usuarios locales obtener hashes de contraseñas y realizar ataques de obtención de contraseñas por fuerza bruta. • http://osvdb.org/71646 http://secunia.com/advisories/44047 http://www.kb.cert.org/vuls/id/648244 http://www.oracle.com/technetwork/topics/security/cpuapr2011-301950.html http://www.securityfocus.com/bid/47171 http://www.vupen.com/english/advisories/2011/0882 https://exchange.xforce.ibmcloud.com/vulnerabilities/66579 • CWE-255: Credentials Management Errors •
CVSS: 6.9EPSS: 0%CPEs: 2EXPL: 3CVE-2011-0902 – Sun Microsystems SunScreen Firewall - Privilege Escalation
https://notcve.org/view.php?id=CVE-2011-0902
Multiple untrusted search path vulnerabilities in the Java Service in Sun Microsystems SunScreen Firewall on SunOS 5.9 allow local users to execute arbitrary code via a modified (1) PATH or (2) LD_LIBRARY_PATH environment variable. Múltiples vulnerabilidades de búsqueda en ruta no confiable en el Java service en Sun Microsystems SunScreen Firewall sobre SunOS v5.9 permite a usuarios locales ejecutar código de su elección a través de una (1) PATH modificada o (2) la variable de entorno LD_LIBRARY_PATH • https://www.exploit-db.com/exploits/16041 http://www.exploit-db.com/exploits/16041 http://www.securityfocus.com/bid/45963 https://exchange.xforce.ibmcloud.com/vulnerabilities/64887 •
CVSS: 4.4EPSS: 0%CPEs: 2EXPL: 0CVE-2010-4443
https://notcve.org/view.php?id=CVE-2010-4443
Unspecified vulnerability in Oracle Solaris 10 and 11 Express allows local users to affect availability, related to Kernel/NFS. Vulnerabilidad no especificada en Oracle Solaris v10 y v11 Express permite a usuarios locales afectar a la disponibilidad, relacionado con Kernel/NFS. • http://osvdb.org/70578 http://secunia.com/advisories/42984 http://www.oracle.com/technetwork/topics/security/cpujan2011-194091.html http://www.securityfocus.com/bid/45886 http://www.securitytracker.com/id?1024975 http://www.vupen.com/english/advisories/2011/0151 https://exchange.xforce.ibmcloud.com/vulnerabilities/64800 •
CVSS: 4.4EPSS: 0%CPEs: 2EXPL: 0CVE-2010-4440
https://notcve.org/view.php?id=CVE-2010-4440
Unspecified vulnerability in Oracle 10 and 11 Express allows local users to affect availability via unknown vectors related to the Kernel. Vulnerabilidad no especificada en Oracle v10 y v11 Express permite a usuarios locales afectar a la disponibilidad a través de vectores desconocidos relacionados con el núcleo. • http://osvdb.org/70575 http://secunia.com/advisories/42984 http://www.oracle.com/technetwork/topics/security/cpujan2011-194091.html http://www.securityfocus.com/bid/45888 http://www.securitytracker.com/id?1024975 http://www.vupen.com/english/advisories/2011/0151 https://exchange.xforce.ibmcloud.com/vulnerabilities/64802 •