Sun

Sunos

561 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.7

CVE-2007-5921

  • EPSS 0.05%
  • Published 10.11.2007 02:46:00
  • Last modified 09.04.2025 00:30:58

Unspecified vulnerability in the ioctl interface in the Solaris Volume Manager (SVM) in Sun Solaris 9 and 10 allows local users to cause a denial of service (panic) via unspecified vectors, a different vulnerability than CVE-2004-1346.

4.9

CVE-2007-5422

  • EPSS 0.06%
  • Published 12.10.2007 21:17:00
  • Last modified 09.04.2025 00:30:58

Unspecified vulnerability in "Solaris Auditing" in the Basic Security Module (BSM) in Sun Solaris 10, when configured for auditing of networking (nt) events, allows local users to cause a denial of service (panic) via unspecified vectors.

4.9

CVE-2007-5225

  • EPSS 0.19%
  • Published 05.10.2007 00:17:00
  • Last modified 09.04.2025 00:30:58

Integer signedness error in FIFO filesystems (named pipes) on Sun Solaris 8 through 10 allows local users to read the contents of unspecified memory locations via a negative maximum length value to the I_PEEK ioctl.

7.6

CVE-2007-4395

  • EPSS 2.7%
  • Published 17.08.2007 23:17:00
  • Last modified 09.04.2025 00:30:58

Multiple unspecified vulnerabilities in the Role Based Access Control (RBAC) functionality in Sun Solaris 8 allow remote attackers who know the password for a role to gain privileges via that role.

4.3

CVE-2007-4310

  • EPSS 0.31%
  • Published 13.08.2007 21:17:00
  • Last modified 09.04.2025 00:30:58

The finger daemon (in.fingerd) in Sun Solaris 7 through 9 allows remote attackers to list all accounts that have certain nonstandard GECOS fields via a request composed of a single digit, as demonstrated by a "finger 9@host" command, a different vuln...

6.9

CVE-2007-3717

  • EPSS 0.05%
  • Published 12.07.2007 16:30:00
  • Last modified 09.04.2025 00:30:58

rcp on Sun Solaris 8, 9, and 10 before 20070710 does not properly call certain helper applications, which allows local users to gain privileges by creating files with certain names, possibly containing shell metacharacters or spaces, a similar issue ...

7.8

CVE-2007-3223

  • EPSS 2.14%
  • Published 14.06.2007 23:30:00
  • Last modified 09.04.2025 00:30:58

Unspecified vulnerability in the NFS server in Sun Solaris 10 before 20070613 allows remote attackers to cause a denial of service (system crash) via certain XDR data in NFS requests, probably related to processing of data by the xdr_bool and xdrmblk...

10

CVE-2007-3093

  • EPSS 14.06%
  • Published 06.06.2007 21:30:00
  • Last modified 09.04.2025 00:30:58

Unspecified vulnerability in the logging mechanism in Solaris Management Console (SMC) on Sun Solaris 8 through 10 before 20070605 allows remote attackers to execute arbitrary code via unspecified vectors, related to the WBEM server.

9

CVE-2007-3094

  • EPSS 2.48%
  • Published 06.06.2007 21:30:00
  • Last modified 09.04.2025 00:30:58

Unspecified vulnerability in the authentication mechanism in Solaris Management Console (SMC) on Sun Solaris 8 through 10 before 20070605 allows remote authenticated users to execute arbitrary code via unspecified vectors, related to the WBEM server.

5

CVE-2007-2882

Exploit
  • EPSS 2.57%
  • Published 30.05.2007 01:30:00
  • Last modified 09.04.2025 00:30:58

Unspecified vulnerability in the NFS client module in Sun Solaris 8 through 10 before 20070524, when operating as an NFS server, allows remote attackers to cause a denial of service (crash) via certain Access Control List (acl) packets.