Oracle

Solaris

552 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.8

CVE-2016-0403

  • EPSS 0.72%
  • Veröffentlicht 21.01.2016 02:59:14
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Unspecified vulnerability in Oracle Sun Solaris 11 allows remote attackers to affect availability via vectors related to SMB Utilities.

2.1

CVE-2015-4922

  • EPSS 0.13%
  • Veröffentlicht 21.01.2016 02:59:05
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Unspecified vulnerability in Oracle Sun Solaris 11 allows local users to affect availability via vectors related to Boot.

2.1

CVE-2015-4920

  • EPSS 0.12%
  • Veröffentlicht 21.01.2016 02:59:03
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Unspecified vulnerability in Oracle Sun Solaris 11 allows local users to affect integrity via vectors related to NDMP Backup Service.

5.5

CVE-2015-5295

  • EPSS 1.64%
  • Veröffentlicht 20.01.2016 16:59:00
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The template-validate command in OpenStack Orchestration API (Heat) before 2015.1.3 (kilo) and 5.0.x before 5.0.1 (liberty) allows remote authenticated users to cause a denial of service (memory consumption) or determine the existence of local files ...

8.1

CVE-2016-0778

Exploit
  • EPSS 1.59%
  • Veröffentlicht 14.01.2016 22:59:02
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The (1) roaming_read and (2) roaming_write functions in roaming_common.c in the client in OpenSSH 5.x, 6.x, and 7.x before 7.1p2, when certain proxy and forward options are enabled, do not properly maintain connection file descriptors, which allows r...

6.5

CVE-2016-0777

  • EPSS 67.2%
  • Veröffentlicht 14.01.2016 22:59:01
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The resend_bytes function in roaming_common.c in the client in OpenSSH 5.x, 6.x, and 7.x before 7.1p2 allows remote servers to obtain sensitive information from process memory by requesting transmission of an entire buffer, as demonstrated by reading...

9.8

CVE-2016-1283

Exploit
  • EPSS 3.76%
  • Veröffentlicht 03.01.2016 00:59:03
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The pcre_compile2 function in pcre_compile.c in PCRE 8.38 mishandles the /((?:F?+(?:^(?(R)a+\"){99}-))(?J)(?'R'(?'R'<((?'RR'(?'R'\){97)?J)?J)(?'R'(?'R'\){99|(:(?|(?'R')(\k'R')|((?'R')))H'R'R)(H'R))))))/ pattern and related patterns with named subgrou...

5

CVE-2015-8000

  • EPSS 62.7%
  • Veröffentlicht 16.12.2015 15:59:01
  • Zuletzt bearbeitet 12.04.2025 10:46:40

db.c in named in ISC BIND 9.x before 9.9.8-P2 and 9.10.x before 9.10.3-P2 allows remote attackers to cause a denial of service (REQUIRE assertion failure and daemon exit) via a malformed class attribute.

5.3

CVE-2015-3195

  • EPSS 3.44%
  • Veröffentlicht 06.12.2015 20:59:05
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The ASN1_TFLG_COMBINE implementation in crypto/asn1/tasn_dec.c in OpenSSL before 0.9.8zh, 1.0.0 before 1.0.0t, 1.0.1 before 1.0.1q, and 1.0.2 before 1.0.2e mishandles errors caused by malformed X509_ATTRIBUTE data, which allows remote attackers to ob...

4.7

CVE-2015-8104

  • EPSS 0.35%
  • Veröffentlicht 16.11.2015 11:59:12
  • Zuletzt bearbeitet 23.04.2025 16:15:20

The KVM subsystem in the Linux kernel through 4.2.6, and Xen 4.3.x through 4.6.x, allows guest OS users to cause a denial of service (host OS panic or hang) by triggering many #DB (aka Debug) exceptions, related to svm.c.