102 matches found
Design/Logic Flaw
An issue was discovered in illumos before f859e7171bb5db34321e45585839c6c3200ebb90, OmniOS Community Edition r151038, OpenIndiana Hipster 2021.04, and SmartOS 20210923. A local unprivileged user can cause a deadlock and kernel panic via crafted rename and rmdir calls on tmpfs filesystems. Oracle...
Solaris SunSSH 11.0 x86 - libpam Remote Root Exploit
Exploit Title: Solaris SunSSH 11.0 x86 - libpam Remote Root 2 Original Exploit Author: Hacker Fantastic Metasploit Module Author: wvu Vendor Homepage: https://www.oracle.com/solaris/technologies/solaris10-overview.html Version: 10 Tested on: SunOS solaris 10 CVE: CVE-2020-14871 Ported By: legend...
Oracle Solaris Common Desktop Environment 1.6 - Local Privilege Escalation Exploit
Title: Oracle Solaris Common Desktop Environment 1.6 - Local Privilege Escalation Author: Marco Ivaldi Vendor: www.oracle.com CVE: CVE-2020-2944 / raptorsdtcmconv.c - CDE sdtcmconvert LPE for Solaris/Intel Copyright c 2019-2020 Marco Ivaldi A buffer overflow in the SanityCheck function in the...
Common Desktop Environment 2.3.1 / 1.6 libDtSvc Buffer Overflow Vulnerability
A difficult to exploit stack-based buffer overflow in the DtCreateDtDirs function in the Common Desktop Environment version distributed with Oracle Solaris 10 1/13 Update 11 and earlier may allow local users to corrupt memory and potentially execute arbitrary code in order to escalate privileges...
Common Desktop Environment 1.6 Local Privilege Escalation Exploit
A buffer overflow in the SanityCheck function in the Common Desktop Environment version distributed with Oracle Solaris 10 1/13 Update 11 and earlier allows local users to gain root privileges via a long calendar name or calendar owner passed to sdtcmconvert in a malicious calendar file. The open...
Common Desktop Environment 2.3.1 / 1.6 libDtSvc Buffer Overflow
@Mediaservice.net Security Advisory 2020-06 last updated on 2020-04-15 Title: Stack-based buffer overflow in CDE libDtSvc Application: Common Desktop Environment 2.3.1 and earlier Common Desktop Environment 1.6 and earlier2020-06-cde-libDtSvc.txt Platforms: Oracle Solaris 10 1/13 Update 11 and...
Common Desktop Environment 2.3.1 Buffer Overflow Exploit
A buffer overflow in the CheckMonitor function in the Common Desktop Environment 2.3.1 and earlier and 1.6 and earlier, as distributed with Oracle Solaris 10 1/13 Update 11 and earlier, allows local users to gain root privileges via a long palette name passed to dtsession in a malicious .Xdefault...
Unspecified Vulnerability in Oracle Solaris (CNVD-2020-07311)
Oracle Solaris is a Unix-like operating system. A security vulnerability exists in the Common Desktop Environment component of Oracle Solaris 10. An attacker could exploit this vulnerability to compromise confidentiality, integrity, and availability...
CVE-2020-2696
Vulnerability in the Oracle Solaris product of Oracle Systems component: Common Desktop Environment. The supported version that is affected is 10. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle Solaris executes to compromise Oracle...
Solaris 10 (x86) : 153061-01
Vulnerability in the Oracle Solaris product of Oracle Sun Systems Products Suite component: Common Desktop Environment. The supported version that is affected is 10. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle Solaris executes to...
Solaris 10 (x86) : 148105-29
Vulnerability in the Oracle Solaris component of Oracle Sun Systems Products Suite subcomponent: SunSSH. The supported version that is affected is 10. Difficult to exploit vulnerability allows unauthenticated attacker with network access via SSH to compromise Oracle Solaris. Successful attacks...
Solaris 10 (sparc) : 146085-08
Oracle Solaris Cluster 3.3: SDS/SVM Mediator patch for Oracle Sola. Date this patch was last updated by Sun : Jun/21/18 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include"compat.inc"; if description scriptid110656;...
Solaris 10 (sparc) : 148881-02
SunOS 5.10: xntpd patch. Date this patch was last updated by Sun : Jan/10/15 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc'; include'compat.inc'; if description...
Solaris 10 (x86) : 127413-16
Message Queue 4.1 Update 4 Patch 6x86 SunOS 5.9 5.10 Core product. Date this patch was last updated by Sun : Mar/12/12 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc';...
Solaris 10 (x86) : 120293-02
SunOS 5.10x86 : mysql patch. Date this patch was last updated by Sun : Jun/27/08 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc'; include'compat.inc'; if description...
Solaris 10 (sparc) : 113859-04
SunOS 5.9 5.10: Sun ONE Directory Server 5.1 patch. Date this patch was last updated by Sun : Mar/15/05 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc'; include'compat.inc'...
Solaris 10 (x86) : 139556-08
SunOS 5.10x86: Kernel Patch. Date this patch was last updated by Sun : May/07/09 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc'; include'compat.inc'; if description...
Solaris 10 (sparc) : 150100-01
Oracle Solaris Cluster 3.3: JCommon patch for Oracle Solaris 10. Date this patch was last updated by Sun : Mar/12/13 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc';...
Solaris 10 (x86) : 125216-04
SunOS 5.10x86: wget patch. Date this patch was last updated by Sun : Apr/15/11 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc'; include'compat.inc'; if description...
CVE-2016-5544
Unspecified vulnerability in Oracle Sun Solaris 10 and 11.3 allows local users to affect confidentiality, integrity, and availability via vectors related to Kernel/X86...