Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

23 matches found

Packet Storm
Packet Stormadded 2021/06/22 12:0 a.m.492 views

Solaris SunSSH 11.0 Remote Root

Exploit Title: Solaris SunSSH 11.0 x86 - libpam Remote Root 3 Exploit Author: Nathaniel Singer, Joe Rozner Date: 09/11/2020 CVE: 2020-14871 Vulnerable Versions: Oracle Solaris: 9 some releases, 10 all releases, 11.0 Description: CVE-2020-14871 is a critical pre-authentication via SSH stack-based...

10CVSS0.1AI score0.80291EPSS
Exploits13
0day.today
0day.todayadded 2021/06/21 12:0 a.m.136 views

Solaris SunSSH 11.0 x86 - libpam Remote Root Exploit (3)

Exploit Title: Solaris SunSSH 11.0 x86 - libpam Remote Root 3 Exploit Author: Nathaniel Singer, Joe Rozner CVE: 2020-14871 Vulnerable Versions: Oracle Solaris: 9 some releases, 10 all releases, 11.0 Description: CVE-2020-14871 is a critical pre-authentication via SSH stack-based buffer overflow...

10CVSS9.6AI score0.80291EPSS
Exploits13
Exploit DB
Exploit DBadded 2021/06/21 12:0 a.m.428 views

Solaris SunSSH 11.0 x86 - libpam Remote Root (3)

Exploit Title: Solaris SunSSH 11.0 x86 - libpam Remote Root 3 Exploit Author: Nathaniel Singer, Joe Rozner Date: 09/11/2020 CVE: 2020-14871 Vulnerable Versions: Oracle Solaris: 9 some releases, 10 all releases, 11.0 Description: CVE-2020-14871 is a critical pre-authentication via SSH stack-based...

10CVSS9.8AI score0.80291EPSS
Exploits13
0day.today
0day.todayadded 2021/05/22 12:0 a.m.91 views

Solaris SunSSH 11.0 x86 - libpam Remote Root Exploit

Exploit Title: Solaris SunSSH 11.0 x86 - libpam Remote Root 2 Original Exploit Author: Hacker Fantastic Metasploit Module Author: wvu Vendor Homepage: https://www.oracle.com/solaris/technologies/solaris10-overview.html Version: 10 Tested on: SunOS solaris 10 CVE: CVE-2020-14871 Ported By: legend...

10CVSS0.5AI score0.80291EPSS
Exploits13
Exploit DB
Exploit DBadded 2021/05/21 12:0 a.m.611 views

Solaris SunSSH 11.0 x86 - libpam Remote Root (2)

Exploit Title: Solaris SunSSH 11.0 x86 - libpam Remote Root 2 Original Exploit Author: Hacker Fantastic Metasploit Module Author: wvu Vendor Homepage: https://www.oracle.com/solaris/technologies/solaris10-overview.html Version: 10 Tested on: SunOS solaris 10 CVE: CVE-2020-14871 Ported By: legend...

10CVSS9.5AI score0.80291EPSS
Exploits13
Rapid7 Blog
Rapid7 Blogadded 2020/12/18 7:15 p.m.198 views

Metasploit Wrap-Up

It's the week of December 17th and that can only mean one thing: a week until Christmas! For those of you who don't celebrate Christmas, a very happy Hanukkah/Chanukah, Kwanzaa, Diwali, Chinese New Year, Winter Solstice and Las Posadas to you all! This is our last weekly wrap-up this year, but as...

10CVSS9.3AI score0.80291EPSS
Exploits36
Metasploit
Metasploitadded 2020/12/17 5:41 p.m.111 views

Oracle Solaris SunSSH PAM parse_user_name() Buffer Overflow

This module exploits a stack-based buffer overflow in the Solaris PAM library's username parsing code, as used by the SunSSH daemon when the keyboard-interactive authentication method is specified. Tested against SunSSH 1.1.5 on Solaris 10u11 1/13 x86 in VirtualBox, VMware Fusion, and VMware...

10CVSS9.7AI score0.80291EPSS
Exploits13
0day.today
0day.todayadded 2020/12/15 12:0 a.m.148 views

SunSSH 11.0 x86 - libpam Remote Root Exploit

Exploit Title: Solaris SunSSH 11.0 x86 - libpam Remote Root Exploit Author: Hacker Fantastic Vendor Homepage: https://www.oracle.com/solaris/technologies/solaris11-overview.html Version: 11 Tested on: SunOS solaris 5.11 11.0 / SunSSH Solaris 10-11.0 x86 libpam remote root exploit CVE-2020-14871...

10CVSS9.5AI score0.80291EPSS
Exploits13
Packet Storm
Packet Stormadded 2020/12/15 12:0 a.m.370 views

Solaris SunSSH 11.0 x86 libpam Remote Root

Exploit Title: Solaris SunSSH 11.0 x86 - libpam Remote Root Exploit Author: Hacker Fantastic Vendor Homepage: https://www.oracle.com/solaris/technologies/solaris11-overview.html Version: 11 Tested on: SunOS solaris 5.11 11.0 / SunSSH Solaris 10-11.0 x86 libpam remote root exploit CVE-2020-14871...

10CVSS0.5AI score0.80291EPSS
Exploits13
Exploit DB
Exploit DBadded 2020/12/15 12:0 a.m.1206 views

Solaris SunSSH 11.0 x86 - libpam Remote Root

Exploit Title: Solaris SunSSH 11.0 x86 - libpam Remote Root Exploit Author: Hacker Fantastic Vendor Homepage: https://www.oracle.com/solaris/technologies/solaris11-overview.html Version: 11 Tested on: SunOS solaris 5.11 11.0 / SunSSH Solaris 10-11.0 x86 libpam remote root exploit CVE-2020-14871...

10CVSS7AI score0.80291EPSS
Exploits13
Tenable Nessus
Tenable Nessusadded 2020/11/11 12:0 a.m.284 views

Oracle Solaris PAM parse_user_name() buffer overflow (CVE-2020-14871)

Binary data solarissshpamcve-2020-14871.nbin...

10CVSS9.5AI score0.80291EPSS
Exploits13References3
FireEye
FireEyeadded 2020/11/04 12:0 a.m.353 views

In Wild Critical Buffer Overflow Vulnerability in Solaris Can Allow Remote Takeover — CVE-2020-14871

FireEye Mandiant has been investigating compromised Oracle Solaris machines in customer environments. During our investigations, we discovered an exploit tool on a customer’s system and analyzed it to see how it was attacking their Solaris environment. The FLARE team’s Offensive Task Force analyz...

10CVSS0.3AI score0.80291EPSS
Exploits13References4
ThreatPost
ThreatPostadded 2020/11/03 9:39 p.m.999 views

Oracle Solaris Zero-Day Attack Revealed

A previously known threat group, called UNC1945, has been compromising telecommunications companies and targeting financial and professional consulting industries, by exploiting a security flaw in Oracle’s Solaris operating system. Researchers said that the group was exploiting the bug when it wa...

10CVSS0.7AI score0.99999EPSS
Exploits145References12
Circl
Circladded 2020/11/02 7:35 p.m.30 views

CVE-2020-14871

creationtimestamp| type| source ---|---|--- 2020-11-02 19:35:04+00:00| seen| MISP/722231ed-1535-455b-aae2-4705701f1258 2020-11-03 11:47:22+00:00| seen| https://t.me/truesecator/1110 2020-11-04 11:40:09+00:00| seen| https://t.me/CyberGovIL/906 2020-11-04 20:20:53+00:00| seen|...

10CVSS7.3AI score0.80291EPSS
Exploits13References14
FireEye
FireEyeadded 2020/11/02 12:0 a.m.887 views

Live off the Land? How About Bringing Your Own Island? An Overview of UNC1945

Through Mandiant investigation of intrusions, the FLARE Advanced Practices team observed a group we track as UNC1945 compromise managed service providers and operate against a tailored set of targets within the financial and professional consulting industries by leveraging access to third-party...

10CVSS0.4AI score0.99999EPSS
Exploits136References9
NVD
NVDadded 2020/10/21 3:15 p.m.26 views

CVE-2020-14871

Vulnerability in the Oracle Solaris product of Oracle Systems component: Pluggable authentication module. Supported versions that are affected are 10 and 11. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Solaris...

10CVSS0.80291EPSS
Exploits13References8
Vulnrichment
Vulnrichmentadded 2020/10/21 2:4 p.m.25 views

CVE-2020-14871

Vulnerability in the Oracle Solaris product of Oracle Systems component: Pluggable authentication module. Supported versions that are affected are 10 and 11. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Solaris...

10CVSS7.9AI score0.80291EPSS
Exploits13References7
CVE
CVEadded 2020/10/21 2:4 p.m.1458 views

CVE-2020-14871

CVE-2020-14871 is a pre-authentication stack-based buffer overflow in the Solaris PAM library (parse_user_name) that can be triggered via SSH keyboard-interactive authentication. Affected: Oracle Solaris (versions including 10 and 11; some Solaris 9/11.0 configurations listed in sources). Root ca...

10CVSS9.5AI score0.80291EPSS
In wildExploits13References8Affected Software1
Cvelist
Cvelistadded 2020/10/21 2:4 p.m.29 views

CVE-2020-14871

Vulnerability in the Oracle Solaris product of Oracle Systems component: Pluggable authentication module. Supported versions that are affected are 10 and 11. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Solaris...

10CVSS9.7AI score0.80291EPSS
Exploits13References7
Tenable Nessus
Tenable Nessusadded 2020/10/21 12:0 a.m.257 views

Oracle Solaris Critical Patch Update : oct2020_SRU11_3_36_23_0

This Solaris system is missing necessary patches to address a critical security update : - Vulnerability in the Oracle Solaris product of Oracle Systems component: Pluggable authentication module. Supported versions that are affected are 10 and 11. Easily exploitable vulnerability allows...

10CVSS8.1AI score0.80291EPSS
Exploits13References4
Rows per page
Query Builder