Lucene search
+L

102 matches found

prion
prion
added 2022/12/26 6:15 a.m.25 views

Design/Logic Flaw

An issue was discovered in illumos before f859e7171bb5db34321e45585839c6c3200ebb90, OmniOS Community Edition r151038, OpenIndiana Hipster 2021.04, and SmartOS 20210923. A local unprivileged user can cause a deadlock and kernel panic via crafted rename and rmdir calls on tmpfs filesystems. Oracle...

1.7CVSS6.7AI score0.00317EPSS
Exploits1References9Affected Software5
zdt
zdt
added 2021/05/22 12:0 a.m.94 views

Solaris SunSSH 11.0 x86 - libpam Remote Root Exploit

Exploit Title: Solaris SunSSH 11.0 x86 - libpam Remote Root 2 Original Exploit Author: Hacker Fantastic Metasploit Module Author: wvu Vendor Homepage: https://www.oracle.com/solaris/technologies/solaris10-overview.html Version: 10 Tested on: SunOS solaris 10 CVE: CVE-2020-14871 Ported By: legend...

10CVSS0.5AI score0.79842EPSS
Exploits13
zdt
zdt
added 2020/04/21 12:0 a.m.61 views

Oracle Solaris Common Desktop Environment 1.6 - Local Privilege Escalation Exploit

Title: Oracle Solaris Common Desktop Environment 1.6 - Local Privilege Escalation Author: Marco Ivaldi Vendor: www.oracle.com CVE: CVE-2020-2944 / raptorsdtcmconv.c - CDE sdtcmconvert LPE for Solaris/Intel Copyright c 2019-2020 Marco Ivaldi A buffer overflow in the SanityCheck function in the...

8.8CVSS8.7AI score0.01802EPSS
Exploits5
zdt
zdt
added 2020/04/18 12:0 a.m.85 views

Common Desktop Environment 2.3.1 / 1.6 libDtSvc Buffer Overflow Vulnerability

A difficult to exploit stack-based buffer overflow in the DtCreateDtDirs function in the Common Desktop Environment version distributed with Oracle Solaris 10 1/13 Update 11 and earlier may allow local users to corrupt memory and potentially execute arbitrary code in order to escalate privileges...

7.8CVSS0.6AI score0.0056EPSS
Exploits3
zdt
zdt
added 2020/04/18 12:0 a.m.70 views

Common Desktop Environment 1.6 Local Privilege Escalation Exploit

A buffer overflow in the SanityCheck function in the Common Desktop Environment version distributed with Oracle Solaris 10 1/13 Update 11 and earlier allows local users to gain root privileges via a long calendar name or calendar owner passed to sdtcmconvert in a malicious calendar file. The open...

8.8CVSS8.7AI score0.01802EPSS
Exploits5
packetstorm
packetstorm
added 2020/04/17 12:0 a.m.131 views

Common Desktop Environment 2.3.1 / 1.6 libDtSvc Buffer Overflow

@Mediaservice.net Security Advisory 2020-06 last updated on 2020-04-15 Title: Stack-based buffer overflow in CDE libDtSvc Application: Common Desktop Environment 2.3.1 and earlier Common Desktop Environment 1.6 and earlier2020-06-cde-libDtSvc.txt Platforms: Oracle Solaris 10 1/13 Update 11 and...

4.4CVSS0.3AI score0.0056EPSS
Exploits3
zdt
zdt
added 2020/01/19 12:0 a.m.178 views

Common Desktop Environment 2.3.1 Buffer Overflow Exploit

A buffer overflow in the CheckMonitor function in the Common Desktop Environment 2.3.1 and earlier and 1.6 and earlier, as distributed with Oracle Solaris 10 1/13 Update 11 and earlier, allows local users to gain root privileges via a long palette name passed to dtsession in a malicious .Xdefault...

8.8CVSS0.6AI score0.00643EPSS
Exploits7
cnvd
cnvd
added 2020/01/17 12:0 a.m.3 views

Unspecified Vulnerability in Oracle Solaris (CNVD-2020-07311)

Oracle Solaris is a Unix-like operating system. A security vulnerability exists in the Common Desktop Environment component of Oracle Solaris 10. An attacker could exploit this vulnerability to compromise confidentiality, integrity, and availability...

8.8CVSS8.8AI score0.00643EPSS
Exploits7References1
osv
osv
added 2020/01/15 5:15 p.m.4 views

CVE-2020-2696

Vulnerability in the Oracle Solaris product of Oracle Systems component: Common Desktop Environment. The supported version that is affected is 10. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle Solaris executes to compromise Oracle...

8.8CVSS7.3AI score0.00643EPSS
Exploits7References6
nessus
nessus
added 2019/07/16 12:0 a.m.23 views

Solaris 10 (x86) : 153061-01

Vulnerability in the Oracle Solaris product of Oracle Sun Systems Products Suite component: Common Desktop Environment. The supported version that is affected is 10. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle Solaris executes to...

8.8CVSS8.2AI score0.00409EPSS
Exploits0References2
nessus
nessus
added 2019/04/16 12:0 a.m.45 views

Solaris 10 (x86) : 148105-29

Vulnerability in the Oracle Solaris component of Oracle Sun Systems Products Suite subcomponent: SunSSH. The supported version that is affected is 10. Difficult to exploit vulnerability allows unauthenticated attacker with network access via SSH to compromise Oracle Solaris. Successful attacks...

5.3CVSS6.8AI score0.03681EPSS
Exploits0References2
nessus
nessus
added 2018/06/22 12:0 a.m.23 views

Solaris 10 (sparc) : 146085-08

Oracle Solaris Cluster 3.3: SDS/SVM Mediator patch for Oracle Sola. Date this patch was last updated by Sun : Jun/21/18 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include"compat.inc"; if description scriptid110656;...

6.9AI score
Exploits0References1
nessus
nessus
added 2018/03/12 12:0 a.m.16 views

Solaris 10 (x86) : 139556-08

SunOS 5.10x86: Kernel Patch. Date this patch was last updated by Sun : May/07/09 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc'; include'compat.inc'; if description...

7AI score
Exploits0References1
nessus
nessus
added 2018/03/12 12:0 a.m.12 views

Solaris 10 (sparc) : 150100-01

Oracle Solaris Cluster 3.3: JCommon patch for Oracle Solaris 10. Date this patch was last updated by Sun : Mar/12/13 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc';...

6.9AI score
Exploits0References1
nessus
nessus
added 2018/03/12 12:0 a.m.19 views

Solaris 10 (x86) : 125216-04

SunOS 5.10x86: wget patch. Date this patch was last updated by Sun : Apr/15/11 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc'; include'compat.inc'; if description...

6.8CVSS6.5AI score0.04214EPSS
Exploits1References3
nessus
nessus
added 2018/03/12 12:0 a.m.23 views

Solaris 10 (x86) : 120293-02

SunOS 5.10x86 : mysql patch. Date this patch was last updated by Sun : Jun/27/08 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc'; include'compat.inc'; if description...

7.5CVSS6.9AI score0.22352EPSS
Exploits5References7
nessus
nessus
added 2018/03/12 12:0 a.m.12 views

Solaris 10 (sparc) : 148881-02

SunOS 5.10: xntpd patch. Date this patch was last updated by Sun : Jan/10/15 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc'; include'compat.inc'; if description...

7AI score
Exploits0References1
nessus
nessus
added 2018/03/12 12:0 a.m.18 views

Solaris 10 (x86) : 127413-16

Message Queue 4.1 Update 4 Patch 6x86 SunOS 5.9 5.10 Core product. Date this patch was last updated by Sun : Mar/12/12 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc';...

5.7CVSS6.7AI score0.00343EPSS
Exploits0References2
nessus
nessus
added 2018/03/12 12:0 a.m.16 views

Solaris 10 (sparc) : 113859-04

SunOS 5.9 5.10: Sun ONE Directory Server 5.1 patch. Date this patch was last updated by Sun : Mar/15/05 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc'; include'compat.inc'...

7AI score
Exploits0References1
cvelist
cvelist
added 2016/10/25 2:0 p.m.22 views

CVE-2016-5544

Unspecified vulnerability in Oracle Sun Solaris 10 and 11.3 allows local users to affect confidentiality, integrity, and availability via vectors related to Kernel/X86...

6.9AI score0.00414EPSS
Exploits0References3
Rows per page
Query Builder