CVSS: 4.1EPSS: 0%CPEs: 3EXPL: 0CVE-2010-4415
https://notcve.org/view.php?id=CVE-2010-4415
Unspecified vulnerability in Oracle Solaris 8, 9, and 10 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to libc. Vulnerabilidad no especificada en Oracle Solaris v8, v9 y v10 permite a usuarios locales afectar la una confidencialidad, integridad y disponibilidad a traves de vectores desconocidos relacionados con libc. • http://secunia.com/advisories/42984 http://www.oracle.com/technetwork/topics/security/cpujan2011-194091.html http://www.securityfocus.com/bid/45904 http://www.securitytracker.com/id?1024975 http://www.vupen.com/english/advisories/2011/0151 https://exchange.xforce.ibmcloud.com/vulnerabilities/64803 •
CVSS: 7.8EPSS: 32%CPEs: 4EXPL: 1CVE-2010-2632 – libc/glob - Resource Exhaustion / Remote ftpd-anonymous (Denial of Service)
https://notcve.org/view.php?id=CVE-2010-2632
Unspecified vulnerability in the FTP Server in Oracle Solaris 8, 9, 10, and 11 Express allows remote attackers to affect availability. NOTE: the previous information was obtained from the January 2011 CPU. Oracle has not commented on claims from a reliable researcher that this is an issue in the glob implementation in libc that allows remote authenticated users to cause a denial of service (CPU and memory consumption) via crafted glob expressions that do not match any pathnames. Vulnerabilidad no especificada en FTP Server para Oracle Solaris v8, v9, v10, v11 y Express permite a atacantes remotos afectar a la disponibilidad, relacionado con FTP. FreeBSD version 9.1 suffers from a remote ftpd denial of service vulnerability. • https://www.exploit-db.com/exploits/15215 http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10598 http://secunia.com/advisories/42984 http://secunia.com/advisories/43433 http://secunia.com/advisories/55212 http://securityreason.com/achievement_securityalert/89 http://securityreason.com/achievement_securityalert/97 http://www.oracle.com/technetwork/topics/security/cpujan2011-194091.html http://www.securitytracker.com/id?1024975 http://www.vupen.com/english/advisories/2011/0151 https:/ •
CVSS: 2.1EPSS: 0%CPEs: 78EXPL: 0CVE-2009-4080
https://notcve.org/view.php?id=CVE-2009-4080
Multiple unspecified vulnerabilities in ldap_cachemgr (aka the LDAP client configuration cache daemon) in Sun Solaris 9 and 10, and OpenSolaris before snv_78, allow local users to cause a denial of service (daemon crash) via vectors involving multiple serviceSearchDescriptor attributes and a call to the getldap_lookup function, and unspecified other vectors. Múltiples vulnerabilidades no especificadas en ldap_cachemgr (también conocido como demonio de la caché del configuración del cliente LDAP= en Sun Solaris V9 y V10 y OpenSolaris anteriores a snv_79, permite a a usuarios locales provocar una denegación de servicio (caída del demonio) a través de vectores que implican múltiples atributos serviceSearchDescriptor y una llamada a la función getldap_lookup y otros vectores no específicos. • http://osvdb.org/60514 http://secunia.com/advisories/37505 http://secunia.com/advisories/37506 http://sunsolve.sun.com/search/document.do?assetkey=1-21-112960-69-1 http://sunsolve.sun.com/search/document.do?assetkey=1-66-231402-1 http://www.securityfocus.com/bid/37129 http://www.securitytracker.com/id?1023239 http://www.vupen.com/english/advisories/2009/3336 •
CVSS: 4.0EPSS: 0%CPEs: 5EXPL: 0CVE-2008-5009
https://notcve.org/view.php?id=CVE-2008-5009
Race condition in the s_xout kernel module in Sun Solstice X.25 9.2, when running on a multiple CPU machine, allows local users to cause a denial of service (panic) via vectors involving reading the /dev/xty file. Condición de carrera en el módulo del kernel s_xout en Sun Solstice X.25 9.2, cuando se ejecuta en una máquina con múltiples CPUs, permite a usuarios locales provocar una denegación de servicio (pánico) mediante vectores que involucran la lectura del archivo /dev/xty. • http://secunia.com/advisories/32667 http://securitytracker.com/id?1021156 http://sunsolve.sun.com/search/document.do?assetkey=1-21-108669-21-1 http://sunsolve.sun.com/search/document.do?assetkey=1-21-108670-21-1 http://sunsolve.sun.com/search/document.do?assetkey=1-26-243106-1 http://www.securityfocus.com/bid/32215 http://www.vupen.com/english/advisories/2008/3087 https://exchange.xforce.ibmcloud.com/vulnerabilities/46466 • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •
CVSS: 9.3EPSS: 35%CPEs: 23EXPL: 1CVE-2008-0964 – Sun Solaris 10 - snoop(1M) Utility Remote Command Execution
https://notcve.org/view.php?id=CVE-2008-0964
Multiple stack-based buffer overflows in snoop on Sun Solaris 8 through 10 and OpenSolaris before snv_96, when the -o option is omitted, allow remote attackers to execute arbitrary code via a crafted SMB packet. Múltiples desbordamientos de búfer en la región stack de la memoria en Snoop en Sun Solaris versión 8 hasta 10 y OpenSolaris anterior a la versión snv_96, cuando se omite la opción -o, permiten a los atacantes remotos ejecutar código arbitrario por medio de un paquete SMB creado. • https://www.exploit-db.com/exploits/6328 http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=734 http://secunia.com/advisories/31386 http://secunia.com/advisories/31535 http://sunsolve.sun.com/search/document.do?assetkey=1-26-240101-1 http://support.avaya.com/elmodocs2/security/ASA-2008-355.htm http://support.nortel.com/go/main.jsp?cscat=BLTNDETAIL&id=766935 http://www.securityfocus.com/bid/30556 http://www.securitytracker.com/id?1020633 http://www.vupen.com&# • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •