8 results (0.007 seconds)

CVSS: 4.7EPSS: 0%CPEs: 4EXPL: 0

Unspecified vulnerability in Oracle Sun Solaris 10, when running on SPARC T4 servers, allows local users to affect availability via unknown vectors related to Kernel. Vulnerabilidad sin especificar en Oracle Sun Solaris 10, cuando se ejecuta en servidores SPARC T4, permite a usuarios locales comprometer la disponibilidad a través de vectores no especificados relacionados con el Kernel. • http://www.mandriva.com/security/advisories?name=MDVSA-2013:150 http://www.oracle.com/technetwork/topics/security/cpuapr2013-1899555.html https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19416 •

CVSS: 5.0EPSS: 0%CPEs: 4EXPL: 0

packet-paltalk.c in the Paltalk dissector in Wireshark 1.2.0 through 1.2.2, on SPARC and certain other platforms, allows remote attackers to cause a denial of service (application crash) via a file that records a malformed packet trace. packet-paltalk.c en el analizador Paltalk en Wireshark desde v1.2.0 hasta v1.2.2, en SPARC y algunas otras plataformas, permite a atacantes remotos producir una denegación de servicio (caída de aplicación) a través de un fichero que almacena la ruta de un paquete manipulado. • http://secunia.com/advisories/37175 http://secunia.com/advisories/37409 http://www.securityfocus.com/bid/36846 http://www.vupen.com/english/advisories/2009/3061 http://www.wireshark.org/docs/relnotes/wireshark-1.2.3.html http://www.wireshark.org/security/wnpa-sec-2009-07.html https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=3689 https://exchange.xforce.ibmcloud.com/vulnerabilities/54016 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6391 • CWE-20: Improper Input Validation •

CVSS: 10.0EPSS: 0%CPEs: 2EXPL: 0

The Sun SPARC Enterprise M4000 and M5000 Server, within a certain range of serial numbers, allows remote attackers to use the manufacturing root password, perform a root login to the eXtended System Control Facility Unit (aka XSCFU or Service Processor), and have unspecified other impact. Los servidores Sun SPARC Enterprise M4000 y M5000, dentro de un cierto rango de números de serie, permite a los atacantes remotos utilizar la contraseña root de fabricación, realizar un inicio de sesión root en eXtended System Control Facility Unit (también se conoce como XSCFU o procesador de servicios), y tener otro impacto no especificado. • http://sunsolve.sun.com/search/document.do?assetkey=1-26-249126-1 http://www.securityfocus.com/bid/33280 http://www.securitytracker.com/id?1021602 http://www.vupen.com/english/advisories/2009/0207 • CWE-264: Permissions, Privileges, and Access Controls •

CVSS: 4.6EPSS: 0%CPEs: 31EXPL: 0

The SPARC hypervisor in Sun System Firmware 6.6.3 through 6.6.5 and 7.1.3 through 7.1.3.e on UltraSPARC T1, T2, and T2+ processors allows logical domain users to access memory in other logical domains via unknown vectors. El hipervisor SPARC en el Firmware de los procesadores de Sun System v6.6.3 hasta v6.6.5 y v7.1.3 hasta 7.1.3.e en UltraSPARC T1, T2 y T2+, permite a usarios del dominio lógico acceder a memoria en otros dominios lógicos a través de vectores desconocidos. • http://secunia.com/advisories/32582 http://sunsolve.sun.com/search/document.do?assetkey=1-26-244826-1 http://www.securityfocus.com/bid/32143 http://www.securitytracker.com/id?1021153 http://www.vupen.com/english/advisories/2008/3047 https://exchange.xforce.ibmcloud.com/vulnerabilities/46407 • CWE-264: Permissions, Privileges, and Access Controls •

CVSS: 9.0EPSS: 0%CPEs: 39EXPL: 0

Unspecified vulnerability in Sun Integrated Lights-Out Manager (ILOM) 2.0.1.5 through 2.0.4.26 allows remote authenticated users to (1) access the service processor (SP) and cause a denial of service (shutdown or reboot), or (2) access the host operating system and have an unspecified impact, via unknown vectors. Vulnerabilidad no especificada en Sun Integrated Lights-Out Manager (ILOM) v2.0.1.5 hsata v2.0.4.26 permite a usuarios autenticados remotos (1) acceder al procesador de servicio (SP) y provocar una denegación de servicio (apagado o reinicio), o (1) acceder al sistema operativo anfitrión y tener un impacto desconocido, a través de vectores desconocidos. • http://secunia.com/advisories/32298 http://sunsolve.sun.com/search/document.do?assetkey=1-26-243486-1 http://www.securityfocus.com/bid/31861 http://www.securitytracker.com/id?1021094 http://www.vupen.com/english/advisories/2008/2890 https://exchange.xforce.ibmcloud.com/vulnerabilities/46023 • CWE-287: Improper Authentication •