Oracle

Solaris

546 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5

CVE-2014-8145

Exploit
  • EPSS 13%
  • Published 31.12.2014 22:59:03
  • Last modified 12.04.2025 10:46:40

Multiple heap-based buffer overflows in Sound eXchange (SoX) 14.4.1 and earlier allow remote attackers to have unspecified impact via a crafted WAV file to the (1) start_read or (2) AdpcmReadBlock function.

3.5

CVE-2014-5353

  • EPSS 0.47%
  • Published 16.12.2014 23:59:00
  • Last modified 12.04.2025 10:46:40

The krb5_ldap_get_password_policy_from_dn function in plugins/kdb/ldap/libkdb_ldap/ldap_pwd_policy.c in MIT Kerberos 5 (aka krb5) before 1.13.1, when the KDC uses LDAP, allows remote authenticated users to cause a denial of service (daemon crash) via...

5

CVE-2014-8964

  • EPSS 2.09%
  • Published 16.12.2014 18:59:10
  • Last modified 12.04.2025 10:46:40

Heap-based buffer overflow in PCRE 8.36 and earlier allows remote attackers to cause a denial of service (crash) or have other unspecified impact via a crafted regular expression, related to an assertion that allows zero repeats.

7.5

CVE-2014-6052

Exploit
  • EPSS 5.24%
  • Published 15.12.2014 18:59:04
  • Last modified 12.04.2025 10:46:40

The HandleRFBServerMessage function in libvncclient/rfbproto.c in LibVNCServer 0.9.9 and earlier does not check certain malloc return values, which allows remote VNC servers to cause a denial of service (application crash) or possibly execute arbitra...

5

CVE-2014-8124

  • EPSS 0.78%
  • Published 12.12.2014 15:59:09
  • Last modified 12.04.2025 10:46:40

OpenStack Dashboard (Horizon) before 2014.1.3 and 2014.2.x before 2014.2.1 does not properly handle session records when using a db or memcached session engine, which allows remote attackers to cause a denial of service via a large number of requests...

6.5

CVE-2014-8094

  • EPSS 1.04%
  • Published 10.12.2014 15:59:06
  • Last modified 29.08.2025 13:42:30

Integer overflow in the ProcDRI2GetBuffers function in the DRI2 extension in X.Org Server (aka xserver and xorg-server) 1.7.0 through 1.16.x before 1.16.3 allows remote authenticated users to cause a denial of service (crash) or possibly execute arbi...

6.4

CVE-2014-7142

  • EPSS 64.23%
  • Published 26.11.2014 15:59:04
  • Last modified 12.04.2025 10:46:40

The pinger in Squid 3.x before 3.4.8 allows remote attackers to obtain sensitive information or cause a denial of service (crash) via a crafted (1) ICMP or (2) ICMP6 packet size.

2.1

CVE-2014-8991

  • EPSS 0.13%
  • Published 24.11.2014 15:59:15
  • Last modified 12.04.2025 10:46:40

pip 1.3 through 1.5.6 allows local users to cause a denial of service (prevention of package installation) by creating a /tmp/pip-build-* file for another user.

5

CVE-2014-8768

Exploit
  • EPSS 28.31%
  • Published 20.11.2014 17:50:05
  • Last modified 12.04.2025 10:46:40

Multiple Integer underflows in the geonet_print function in tcpdump 4.5.0 through 4.6.2, when in verbose mode, allow remote attackers to cause a denial of service (segmentation fault and crash) via a crafted length value in a Geonet frame.

2.1

CVE-2014-6551

  • EPSS 0.05%
  • Published 15.10.2014 22:55:08
  • Last modified 12.04.2025 10:46:40

Unspecified vulnerability in Oracle MySQL Server 5.5.38 and earlier and 5.6.19 and earlier allows local users to affect confidentiality via vectors related to CLIENT:MYSQLADMIN.