55 matches found
CVE-2023-21896
Vulnerability in the Oracle Solaris product of Oracle Systems component: NSSwitch. Supported versions that are affected are 10 and 11. Difficult to exploit vulnerability allows low privileged attacker with logon to the infrastructure where Oracle Solaris executes to compromise Oracle Solaris...
SUSE CVE-2007-0882
Argument injection vulnerability in the telnet daemon in.telnetd in Solaris 10 and 11 SunOS 5.10 and 5.11 misinterprets certain client "-f" sequences as valid requests for the login program to skip authentication, which allows remote attackers to log into certain accounts, as demonstrated by the...
SUSE CVE-2012-3199
Unspecified vulnerability in Oracle Sun Solaris 10 and 11 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Gnome Trusted Extension...
SUSE CVE-2012-3211
Unspecified vulnerability in Oracle Sun Solaris 10 and 11 allows local users to affect availability via unknown vectors related to Kernel/System Call...
CVE-2023-24039
A stack-based buffer overflow in ParseColors in libXm in Common Desktop Environment 1.6 can be exploited by local low-privileged users via the dtprintinfo setuid binary to escalate their privileges to root on Solaris 10 systems. NOTE: This vulnerability only affects products that are no longer...
PT-2023-19372 · Oracle · Solaris
Name of the Vulnerable Software and Affected Versions: Common Desktop Environment version 1.6 Description: A stack-based buffer overflow in the ParseColors function in libXm can be exploited by local low-privileged users via the dtprintinfo setuid binary to escalate their privileges to root on...
CVE-2022-21439
Vulnerability in the Oracle Solaris product of Oracle Systems component: Kernel. Supported versions that are affected are 10 and 11. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle Solaris executes to compromise Oracle Solaris...
Oracle Solaris 访问控制错误漏洞
Oracle Solaris is a UNIX operating system from Oracle Corporation. An Access Control Error vulnerability exists in Oracle Solaris, which arises from the product's Filesystem component not adding access restrictions for low-privileged users. The vulnerability can be exploited by an attacker to log...
CVE-2020-14871
Vulnerability in the Oracle Solaris product of Oracle Systems component: Pluggable authentication module. Supported versions that are affected are 10 and 11. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Solaris...
CVE-2020-2927
Vulnerability in the Oracle Solaris product of Oracle Systems component: Common Desktop Environment. Supported versions that are affected are 10 and 11. Difficult to exploit vulnerability allows low privileged attacker with logon to the infrastructure where Oracle Solaris executes to compromise...
Unspecified Vulnerability in Oracle Solaris (CNVD-2020-03245)
Oracle Solaris is a Unix-like operating system. An unspecified vulnerability exists in the X Window System component of Oracle Solaris 10 and 11. An attacker could exploit this vulnerability to compromise confidentiality and integrity...
CVE-2019-2544
Vulnerability in the Oracle Solaris component of Oracle Sun Systems Products Suite subcomponent: Kernel. Supported versions that are affected are 10 and 11. Easily exploitable vulnerability allows unauthenticated attacker with logon to the infrastructure where Oracle Solaris executes to compromis...
Unspecified Vulnerability in Oracle Solaris (CNVD-2019-28425)
Oracle Sun Systems Products Suite is a suite of Sun systems products from Oracle Corporation, of which Solaris is one of the computer operating system components. A security vulnerability exists in the DHCP Client subcomponent of the Solaris component version 10 of the Oracle Sun Systems Products...
CVE-2018-2718
Vulnerability in the Solaris component of Oracle Sun Systems Products Suite subcomponent: RPC. Supported versions that are affected are 10 and 11.3. Easily exploitable vulnerability allows unauthenticated attacker with network access via NFS to compromise Solaris. Successful attacks of this...
CVE-2018-2710
Vulnerability in the Solaris component of Oracle Sun Systems Products Suite subcomponent: Kernel. The supported version that is affected is 10. Easily exploitable vulnerability allows unauthenticated attacker with network access via ICMP to compromise Solaris. Successful attacks of this...
CVE-2017-10122
Vulnerability in the Solaris component of Oracle Sun Systems Products Suite subcomponent: Kernel. Supported versions that are affected are 10 and 11. Difficult to exploit vulnerability allows high privileged attacker with logon to the infrastructure where Solaris executes to compromise Solaris...
CVE-2017-10003
Vulnerability in the Solaris component of Oracle Sun Systems Products Suite subcomponent: Network Services Library. The supported version that is affected is 10. Difficult to exploit vulnerability allows low privileged attacker with logon to the infrastructure where Solaris executes to compromise...
Oracle Solaris Remote Vulnerability (CNVD-2017-18121)
Oracle Sun Solaris is a computer operating system developed by Sun Microsystems. It is a derivative of the UNIX operating system. Oracle Solaris versions 10 and 11 have a security vulnerability in the IKE implementation that allows an attacker to exploit the vulnerability to affect availability...
VulnCheck KEV: CVE-2017-3622
Vulnerability in the Solaris component of Oracle Sun Systems Products Suite subcomponent: Common Desktop Environment CDE. The supported version that is affected is 10. Easily "exploitable" vulnerability allows low privileged attacker with logon to the infrastructure where Solaris executes...
CVE-2016-5559
Unspecified vulnerability in Oracle Sun Solaris 10 and 11.3 allows local users to affect integrity via vectors related to Kernel...