CVSS: 7.1EPSS: 0%CPEs: 2EXPL: 0CVE-2007-2465
https://notcve.org/view.php?id=CVE-2007-2465
02 May 2007 — Unspecified vulnerability in Sun Solaris 9, when Solaris Auditing (BSM) is enabled for file read, write, attribute modify, create, or delete audit classes, allows local users to cause a denial of service (panic) via unknown vectors, possibly related to the audit_savepath function. Vulnerabilidad no especificada en Sun Solaris 9, cuando Solaris Auditing (BSM) está habilitado para la lectura, escritura, modificación de atributos o borrado de clases de auditoria de fichero, permite a usuarios locales provocar ... • http://osvdb.org/34904 •
CVSS: 7.5EPSS: 1%CPEs: 2EXPL: 0CVE-2007-2045
https://notcve.org/view.php?id=CVE-2007-2045
16 Apr 2007 — Unspecified vulnerability in the IP implementation in Sun Solaris 8 and 9 allows remote attackers to cause a denial of service (CPU consumption) via crafted IP packets, probably related to fragmented packets with duplicate or missing fragments. Vulnerabilidad no especificada en la implementación de IP de Sun Solaris 8 y 9 permite a atacantes remotos provocar una denegación de servicio (agotamiento de CPU) mediante paquetes IP manipulados, probablemente relacionados con paquetes fragmentados con fragmentos d... • http://osvdb.org/34901 •
CVSS: 10.0EPSS: 3%CPEs: 4EXPL: 0CVE-2007-1794
https://notcve.org/view.php?id=CVE-2007-1794
02 Apr 2007 — The Javascript engine in Mozilla 1.7 and earlier on Sun Solaris 8, 9, and 10 might allow remote attackers to execute arbitrary code via vectors involving garbage collection that causes deletion of a temporary object that is still being used. NOTE: this issue might be related to CVE-2006-3805. El motor de Javascript en Mozilla 1.7 y anteriores en Sun Solaris 8, 9, y 10 podría permitir a atacantes remotos ejecutar código de su elección a través de vectores que afectan al colector de basura que provoca el borr... • http://secunia.com/advisories/24624 •
CVSS: 5.9EPSS: 0%CPEs: 2EXPL: 0CVE-2006-7140
https://notcve.org/view.php?id=CVE-2006-7140
07 Mar 2007 — The libike library, as used by in.iked, elfsign, and kcfd in Sun Solaris 9 and 10, when using an RSA key with exponent 3, removes PKCS-1 padding before generating a hash, which allows remote attackers to forge a PKCS #1 v1.5 signature that is signed by that RSA key and prevents libike from correctly verifying X.509 and other certificates that use PKCS #1, a similar issue to CVE-2006-4339. La biblioteca libike, tal y como se usa en in.iked, elfsign, y kcfd en Sun Solaris 9 y 10, cuando usan una clave RSA con... • http://secunia.com/advisories/23104 •
CVSS: 7.8EPSS: 0%CPEs: 3EXPL: 0CVE-2006-7028
https://notcve.org/view.php?id=CVE-2006-7028
23 Feb 2007 — Single CPU Sun systems running Solaris 7, 8, or 9, such as Netra, allows remote attackers to cause a denial of service (console hang) via a flood of small TCP/IP packets. NOTE: this issue has not been replicated by third parties. In addition, the cause is unknown, although it might be related to "jabber" and generation of a large amount of interrupts within the console, or a hardware error. Sistemas de una sola CPU Sun corriendo bajo Solaris 7, 8 o 9, como el Netra, permiten a atacantes remotos provocar una... • http://www.securityfocus.com/archive/1/434449/30/4890/threaded •
CVSS: 4.7EPSS: 0%CPEs: 3EXPL: 0CVE-2007-0895
https://notcve.org/view.php?id=CVE-2007-0895
13 Feb 2007 — Race condition in recursive directory deletion with the (1) -r or (2) -R option in rm in Solaris 8 through 10 before 20070208 allows local users to delete files and directories as the user running rm by moving a low-level directory to a higher level as it is being deleted, which causes rm to chdir to a ".." directory that is higher than expected, possibly up to the root file system, a related issue to CVE-2002-0435. Condición de carrera en el borrado de directorios recursivo con las opciones (1) -r o (2) -R... • http://secunia.com/advisories/24082 •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2007-0503
https://notcve.org/view.php?id=CVE-2007-0503
25 Jan 2007 — Unspecified vulnerability in kcms_calibrate in Sun Solaris 8 and 9 before 20071122 allows local users to execute arbitrary commands via unknown vectors. Vulnerabilidad no especificada en kcms_calibrate en Sun Solaris 8 y 9 anterior al 22/11/2007 permite a usuarios locales ejecutar comandos de su elección mediante vectores desconocidos. • http://osvdb.org/31598 •
CVSS: 7.8EPSS: 0%CPEs: 3EXPL: 0CVE-2007-0470
https://notcve.org/view.php?id=CVE-2007-0470
24 Jan 2007 — Multiple unspecified vulnerabilities in tip in Sun Solaris 8, 9, and 10 allow local users to gain uucp account privileges via unspecified vectors. Múltiples vulnerabilidades no especificadas en tip de Sun Solaris 8, 9, y 10 permite a usuarios locales obtener privilegios de cuentas uucp mediante vectores no especificados. • http://osvdb.org/31616 •
CVSS: 7.8EPSS: 9%CPEs: 2EXPL: 1CVE-2007-0165 – Sun Solaris 9 - RPC Request Denial of Service
https://notcve.org/view.php?id=CVE-2007-0165
10 Jan 2007 — Unspecified vulnerability in libnsl in Sun Solaris 8 and 9 allows remote attackers to cause a denial of service (crash) via malformed RPC requests that trigger a crash in rpcbind. Vulnerabilidad no especificada en libnsl de Sun Solaris 8 y 9 permite a atacantes remotos provocar una denegación de servicio (caída) mediante peticiones RPC manipuladas que disparan una caída en rpcbind. • https://www.exploit-db.com/exploits/29406 •
CVSS: 7.8EPSS: 0%CPEs: 3EXPL: 0CVE-2006-6494
https://notcve.org/view.php?id=CVE-2006-6494
13 Dec 2006 — Directory traversal vulnerability in ld.so.1 in Sun Solaris 8, 9, and 10 allows local users to execute arbitrary code via a .. (dot dot) sequence in the LANG environment variable that points to a locale file containing attacker-controlled format string specifiers. Vulnerabilidad de escalado de directorio en ld.so.1 del Sun Solaris 8, 9 y 10 permite a usuarios locales ejecutar código de su elección a través de la secuencia .. (punto punto) en la variable de entorno LANG que señala a un fichero local que cont... • http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=449 •