CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2023-31284
https://notcve.org/view.php?id=CVE-2023-31284
04 May 2023 — illumos illumos-gate before 676abcb has a stack buffer overflow in /dev/net, leading to privilege escalation via a stat on a long file name in /dev/net. illumos illumos-gate antes de 676abcb tiene un Desbordamiento de Búfer en /dev/net, lo que lleva a la escalada de privilegios a través de una estadística en un nombre de archivo largo en /dev/net. • http://www.openwall.com/lists/oss-security/2023/09/13/4 • CWE-787: Out-of-bounds Write •
CVSS: 8.5EPSS: 0%CPEs: 4EXPL: 0CVE-2019-9579
https://notcve.org/view.php?id=CVE-2019-9579
26 Dec 2022 — An issue was discovered in Illumos in Nexenta NexentaStor 4.0.5 and 5.1.2, and other products. The SMB server allows an attacker to have unintended access, e.g., an attacker with WRITE_XATTR can change permissions. This occurs because of a combination of three factors: ZFS extended attributes are used to implement NT named streams, the SMB protocol requires implementations to have open handle semantics similar to those of NTFS, and the SMB server passes along certain attribute requests to the underlying obj... • https://www.illumos.org/issues/10506 •
CVSS: 5.5EPSS: 0%CPEs: 6EXPL: 2CVE-2021-43395
https://notcve.org/view.php?id=CVE-2021-43395
26 Dec 2022 — An issue was discovered in illumos before f859e7171bb5db34321e45585839c6c3200ebb90, OmniOS Community Edition r151038, OpenIndiana Hipster 2021.04, and SmartOS 20210923. A local unprivileged user can cause a deadlock and kernel panic via crafted rename and rmdir calls on tmpfs filesystems. Oracle Solaris 10 and 11 is also affected. Se descubrió un problema en illumos antes de f859e7171bb5db34321e45585839c6c3200ebb90, OmniOS Community Edition r151038, OpenIndiana Hipster 2021.04 y SmartOS 20210923. Un usuario... • http://www.tribblix.org/relnotes.html • CWE-667: Improper Locking •
CVSS: 9.8EPSS: 0%CPEs: 5EXPL: 0CVE-2020-27678
https://notcve.org/view.php?id=CVE-2020-27678
23 Oct 2020 — An issue was discovered in illumos before 2020-10-22, as used in OmniOS before r151030by, r151032ay, and r151034y and SmartOS before 20201022. There is a buffer overflow in parse_user_name in lib/libpam/pam_framework.c. Se detectó un problema en illumos antes del 22-10-2020, como es usado en OmniOS versiones anteriores a r151030by, r151032ay y r151034y y SmartOS versiones anteriores a 20201022. Se presenta un desbordamiento de búfer en la función parse_user_name en la biblioteca lib/libpam/pam_framework.c • https://github.com/illumos/illumos-gate/commit/1d276e0b382cf066dae93640746d8b4c54d15452 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 8.6EPSS: 0%CPEs: 1EXPL: 0CVE-2016-6560
https://notcve.org/view.php?id=CVE-2016-6560
31 Mar 2017 — illumos osnet-incorporation bcopy() and bzero() implementations make signed instead of unsigned comparisons allowing a system crash. Implementaciones illumos osnet-incorporation bcopy() y bzero() hacen firma en lugar de comparaciones no firmadas que permiten un bloqueo del sistema. • https://github.com/illumos/illumos-gate/commit/5aaab1a49679c26dbcb6fb6dc25799950d70cc71 • CWE-20: Improper Input Validation CWE-195: Signed to Unsigned Conversion Error •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1CVE-2016-6561
https://notcve.org/view.php?id=CVE-2016-6561
31 Mar 2017 — illumos smbsrv NULL pointer dereference allows system crash. Desreferencia illumos smbsrv puntero null permite caída del sistema. • http://www.securityfocus.com/bid/98079 • CWE-476: NULL Pointer Dereference •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2014-9491
https://notcve.org/view.php?id=CVE-2014-9491
20 Jan 2015 — The devzvol_readdir function in illumos does not check the return value of a strchr call, which allows remote attackers to cause a denial of service (NULL pointer dereference and panic) via unspecified vectors. La función devzvol_readdir en illumos no comprueba el valor de retorno de una llamada strchr, lo que permite a atacantes remotos causar una denegación de servicio (referencia a puntero nulo y pánico) a través de vectores no especificados. • http://seclists.org/oss-sec/2015/q1/27 •
CVSS: 7.9EPSS: 88%CPEs: 20EXPL: 4CVE-2012-0217 – FreeBSD - Intel SYSRET Privilege Escalation
https://notcve.org/view.php?id=CVE-2012-0217
12 Jun 2012 — The x86-64 kernel system-call functionality in Xen 4.1.2 and earlier, as used in Citrix XenServer 6.0.2 and earlier and other products; Oracle Solaris 11 and earlier; illumos before r13724; Joyent SmartOS before 20120614T184600Z; FreeBSD before 9.0-RELEASE-p3; NetBSD 6.0 Beta and earlier; Microsoft Windows Server 2008 R2 and R2 SP1 and Windows 7 Gold and SP1; and possibly other operating systems, when running on an Intel processor, incorrectly uses the sysret path in cases where a certain address is not a c... • https://packetstorm.news/files/id/152001 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •