CVSS: 7.9EPSS: 88%CPEs: 20EXPL: 4CVE-2012-0217 – FreeBSD - Intel SYSRET Privilege Escalation
https://notcve.org/view.php?id=CVE-2012-0217
12 Jun 2012 — The x86-64 kernel system-call functionality in Xen 4.1.2 and earlier, as used in Citrix XenServer 6.0.2 and earlier and other products; Oracle Solaris 11 and earlier; illumos before r13724; Joyent SmartOS before 20120614T184600Z; FreeBSD before 9.0-RELEASE-p3; NetBSD 6.0 Beta and earlier; Microsoft Windows Server 2008 R2 and R2 SP1 and Windows 7 Gold and SP1; and possibly other operating systems, when running on an Intel processor, incorrectly uses the sysret path in cases where a certain address is not a c... • https://packetstorm.news/files/id/152001 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.5EPSS: 0%CPEs: 3EXPL: 0CVE-2007-4310
https://notcve.org/view.php?id=CVE-2007-4310
13 Aug 2007 — The finger daemon (in.fingerd) in Sun Solaris 7 through 9 allows remote attackers to list all accounts that have certain nonstandard GECOS fields via a request composed of a single digit, as demonstrated by a "finger 9@host" command, a different vulnerability than CVE-2001-1503. El demonio finger (in.fingerd) en Sun Solaris 7 hasta 9 permite a atacantes remotos listar todas las cuentas que tienen campos GECOS que no son estándar mediante una petición compuesta de un único dígito, como ha sido demostrado por... • http://securityreason.com/securityalert/2996 •
CVSS: 7.8EPSS: 0%CPEs: 3EXPL: 0CVE-2006-7028
https://notcve.org/view.php?id=CVE-2006-7028
23 Feb 2007 — Single CPU Sun systems running Solaris 7, 8, or 9, such as Netra, allows remote attackers to cause a denial of service (console hang) via a flood of small TCP/IP packets. NOTE: this issue has not been replicated by third parties. In addition, the cause is unknown, although it might be related to "jabber" and generation of a large amount of interrupts within the console, or a hardware error. Sistemas de una sola CPU Sun corriendo bajo Solaris 7, 8 o 9, como el Netra, permiten a atacantes remotos provocar una... • http://www.securityfocus.com/archive/1/434449/30/4890/threaded •
CVSS: 7.5EPSS: 73%CPEs: 9EXPL: 3CVE-2005-4797 – Solaris LPD Arbitrary File Delete
https://notcve.org/view.php?id=CVE-2005-4797
31 Dec 2005 — Directory traversal vulnerability in printd line printer daemon (lpd) in Solaris 7 through 10 allows remote attackers to delete arbitrary files via ".." sequences in an "Unlink data file" command. • https://packetstorm.news/files/id/180500 •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2005-4795
https://notcve.org/view.php?id=CVE-2005-4795
31 Dec 2005 — Unspecified vulnerability in the multi-language environment library (libmle) in Solaris 7 and 8, as shipped with the Japanese locale, allows local users to gain privileges via unknown attack vectors. • http://secunia.com/advisories/16219 •
CVSS: 7.1EPSS: 0%CPEs: 14EXPL: 0CVE-2005-4796
https://notcve.org/view.php?id=CVE-2005-4796
31 Dec 2005 — Unspecified vulnerability in the XView library (libxview.so) in Solaris 2.5 to 10 allows local users to corrupt files via unknown vectors related to the handling of the clipboard selection while an XView application exits. • http://sunsolve.sun.com/search/document.do?assetkey=1-26-100881-1 •
CVSS: 7.8EPSS: 0%CPEs: 4EXPL: 0CVE-2005-3099
https://notcve.org/view.php?id=CVE-2005-3099
28 Sep 2005 — Unspecified vulnerability in the (1) Xsun and (2) Xprt commands in Solaris 7, 8, 9, and 10 allows local users to execute arbitrary code. • http://secunia.com/advisories/16955 •
CVSS: 5.5EPSS: 0%CPEs: 6EXPL: 0CVE-2005-2032
https://notcve.org/view.php?id=CVE-2005-2032
16 Jun 2005 — Unknown vulnerability in lpadmin on Sun Solaris 7, 8, and 9 allows local users to overwrite arbitrary files. • http://secunia.com/advisories/15723 •
CVSS: 7.5EPSS: 0%CPEs: 5EXPL: 0CVE-2005-1591
https://notcve.org/view.php?id=CVE-2005-1591
16 May 2005 — Unknown vulnerability in NIS+ on Solaris 7, 8, and 9 allows remote attackers to cause a denial of service (rpc.nisd disabled and NIS+ unavailable) via unknown vectors. • http://sunsolve.sun.com/search/document.do?assetkey=1-26-57780-1 •
CVSS: 5.5EPSS: 0%CPEs: 6EXPL: 0CVE-2005-1518
https://notcve.org/view.php?id=CVE-2005-1518
11 May 2005 — Unknown vulnerability in Solaris 7 through 9, when using Federated Naming Services (FNS), autofs, and FNS X.500 configuration, allows local users to cause a denial of service (automountd crash) when "accessing" /xfn/_x500. • http://sunsolve.sun.com/search/document.do?assetkey=1-26-57786-1 •